610 matches found
HPSBGN3547 rev.2 - HP Device Manager, Remote Read Access to Arbitrary Files
Potential Security Impact Remote read access to arbitrary files. Source: HP, HP Product Security Response Team PSRT VULNERABILITY SUMMARY Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote attackers to read arbitrary files via a .. dot dot in the...
HPSBGN03438 rev.2 - HP Support Assistant, Local Authentication Bypass
Potential Security Impact Authentication Bypass Source: HewlettPackard Company, HP Software Security Response Team VULNERABILITY SUMMARY A potential security vulnerability has been identified in HP Support Assistant. This vulnerability could be exploited locally to allow authentication bypass...
HPSBPI03546 rev.3 - HP LaserJet Printers and MFPs, HP OfficeJet Enterprise Printers, Remote Disclosure of Information
Potential Security Impact Remote disclosure of information Source: HP Development Company, HP Product Security Response Team VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet Printers and MFPs, and certain HP OfficeJet Enterprise printers and...
HPSBHF03436 rev.2 - HP Thin Client with ThinPro OS, running Linux, Local Elevated Privileges
Potential Security Impact Elevated Privileges Source: HewlettPackard Company, HP Software Security Response Team VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP Thin Clients running ThinPro OS. The vulnerability could be exploited exploited locally...
HPSBHF03439 rev.2 - HP Commercial PCs with Sure Start, Local Denial of Service
Potential Security Impact Denial of Service DoS Source: HewlettPackard Company, HP Software Security Response Team VULNERABILITY SUMMARY HP has identified a potential security vulnerability with the Sure Start implementation on certain 2015 commercial platforms. This vulnerability could be...
HPSBHF03545 rev. 2 - HP EliteBook and Zbook Products with Windows NVidia Graphics Driver, Multiple Local Vulnerabilities
Potential Security Impact Multiple Vulnerabilities Source: HewlettPackard Company, HP Software Security Response Team VULNERABILITY SUMMARY Potential security vulnerabilities identified with Windows running the NVidia Graphics Driver have been addressed in certain HP EliteBook and Zbook Products...
HPSBHF03513 rev.2 - HP PCs and Workstations running Windows and Linux with NVIDIA Graphics Driver, Local Denial of Service (DoS), Elevation of Privilege
Potential Security Impact Denial of Service DoS, elevation of privilege VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with certain HP PCs and workstations with Windows and Linux running the NVIDIA Graphics Driver. The vulnerabilities could be locally exploited...
HPSBHF03408 rev.3 - HP PCs with HP lt4112 LTE/HSPA+ Gobi 4G Module, Remote Execution of Arbitrary Code
Potential Security Impact Remote execution of arbitrary code VULNERABILITY SUMMARY Potential security vulnerabilities have been identified in certain HP notebook PCs with the HP lt4112 LTE/HSPA+ Gobi 4G Module. The vulnerabilities could be exploited remotely to allow execution of arbitrary code...
HPSBHF03374 rev.1 - HP PCs with UEFI Firmware, Denial of Service
Potential Security Impact Denial of service VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with certain HP consumer notebook PCs, HP commercial notebook PCs, HP consumer desktop PCs, HP commercial workstation PCs, Retail Solutions and Thin Clients with UEFI Firmware...
HPSBPI03360 rev.5 - HP LaserJet Printers and MFPs, HP OfficeJet Printers and MFPs, and HP JetDirect Networking cards using OpenSSL, Remote Disclosure of Information
Potential Security Impact Remote disclosure of information VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet Printers and MFPs, certain HP OfficeJet Printers and MFPs, and certain HP JetDirect Networking cards using OpenSSL. This is the SSLv3...
HPSBPI03322 rev.2 - HP Access Control Software, Local Unauthorized Access
Potential Security Impact Local unauthorized access VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Access Control Pull Print Software. The vulnerability could result in local unauthorized access. RESOLUTION Download and install HP Access Control patch AC 14.1...
HPSBPI03315 rev.2 - HP Capture and Route Software, Remote Information Disclosure
Potential Security Impact Remote information disclosure VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Capture and Route Software. The vulnerability could result in information disclosure. RESOLUTION Use HPCR 1.4 version 1.4 or later. HP has provided the...
HPSBHF03310 rev.2 - HP Thin Clients running Windows Embedded Standard 7 (WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote Elevation of Privilege, Execution of Code
Potential Security Impact Remote elevation of privilege, execution of code VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with certain HP Thin Clients running Windows Embedded Standard 7 WES7 and Windows Embedded Standard 2009 WES09 and all versions of HP Easy Deplo...
HPSBPI03147 rev.2 - Certain HP Color LaserJet Printers, Remote Unauthorized Access, Denial of Service (DoS)
Potential Security Impact Remote unauthorized access to data, Denial of Service DoS VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP Color LaserJet printers. The vulnerability could be exploited remotely to gain unauthorized access to data or to create ...
HPSBHF03119 rev.3 - HP DreamColor Professional Display running Bash Shell, Remote Code Execution
Potential Security Impact Remote code execution VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP DreamColor Z27x Professional Display running Bash Shell. This is the Bash Shell vulnerability known as "ShellShock" which could be exploited remotely to allow...
HPSBPI03107 rev.3 - Certain HP LaserJet Printers, MFPs and Certain HP OfficeJet Enterprise Printers using OpenSSL, Remote Unauthorized Access
Potential Security Impact Remote Unauthorized access VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet Printers, MFPs and certain HP OfficeJet Enterprise Printers using OpenSSL. The vulnerability could be exploited remotely to allow remote...
HPSBPI03031 rev.3 - HP Officejet Pro X Printers, Certain Officejet Pro Printers, Remote Disclosure of Information
Potential Security Impact Remote disclosure of information VULNERABILITY SUMMARY A potential security vulnerability has been identified in HP Officejet Pro X printers and in certain Officejet Pro printers running OpenSSL. This is the OpenSSL vulnerability known as "Heartbleed" CVE-2014-0160 which...
HPSBHF03021 rev.1 - HP Thin Client with ThinPro OS or Smart Zero Core Services, Running OpenSSL, Remote Disclosure of Information
Potential Security Impact Remote disclosure of information VULNERABILITY SUMMARY The “Heartbleed” vulnerability was detected in specific OpenSSL versions. OpenSSL is a 3rd party product that is embedded with some of HP products. This bulletin’s objective is to notify HP customers about certain HP...
HPSBPI03014 rev.2 - HP LaserJet Pro MFP Printers, HP Color LaserJet Pro MFP Printers, Remote Disclosure of Information
Potential Security Impact Remote disclosure of information VULNERABILITY SUMMARY A potential vulnerability exists in HP LaserJet Pro MFP Printers, HP Color LaserJet Pro MFP Printers. This is the OpenSSL vulnerability known as "Heartbleed" CVE-2014-0160 which could be exploited remotely resulting ...
HPSBPI02938 rev.2 - Certain HP LaserJet Printers, Remote Denial of Service (DoS)
Potential Security Impact Remote Denial of Service DoS VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet Printers. The vulnerability could be exploited remotely resulting in a Denial of Service DoS. RESOLUTION HP has provided firmware updates fo...
HPSBPI02945 rev.2 - HP Officejet Pro 8500 (A909) All-in-One Printer, Cross-Site Scripting (XSS)
Potential Security Impact Cross-site scripting XSS VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Officejet Pro 8500 A909 All-in-One Printer. The vulnerability could be exploited to allow cross-site scripting XSS. RESOLUTION HP has provided updated HP Officej...
HPSBPI02892 rev.2 - Certain HP FutureSmart MFP, Weak PDF Encryption, Local Disclosure of Information
Potential Security Impact Weak PDF encryption and local disclosure of information VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with certain HP FutureSmart LaserJet printers. The vulnerabilities might lead to weak encryption of PDF documents or local disclosure of...
HPSBPI02887 rev.3 - Certain HP LaserJet Pro Printers, Remote Information Disclosure
Potential Security Impact Remote information disclosure VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet Pro printers. The vulnerability could be exploited remotely to gain unauthorized access to data. RESOLUTION HP has provided updated printer...
HPSBHF02878 rev.1 - HP Smart Zero Client, Unauthorized Access
Potential Security Impact Unauthorized access VULNERABILITY SUMMARY A potential security vulnerability has been identified with the HP Smart Zero Client. This vulnerability could be exploited by a local user on the device to gain unauthorized access. RESOLUTION HP has provided updated operating...
HPSBPI02869 SSRT100936 rev.4 - HP LaserJet MFP Printers, HP Color LaserJet MFP Printers, Certain HP LaserJet Printers, Remote Unauthorized Access to Files
Potential Security Impact Remote unauthorized access to files VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP LaserJet MFP printers, HP Color LaserJet MFP printers, and certain HP LaserJet printers. The vulnerability could be exploited remotely to gain...
HPSBPI02868 SSRT101017 rev.2 - HP Managed Printing Administration (MPA), Remote Cross Site Scripting (XSS)
Potential Security Impact Remote cross site scripting XSS VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Managed Printing Administration MPA. The vulnerability could be exploited remotely resulting in cross site scripting XSS. RESOLUTION HP has made HP Manage...
HPSBHF02865 SSRT101158 rev.2 - HP ElitePad 900, Secure Boot Configuration Inconsistency
Potential Security Impact Secure Boot configuration inconsistency VULNERABILITY SUMMARY A potential vulnerability has been identified with certain HP ElitePad tablet PCs. The secure boot feature of the BIOS may not be enabled, allowing alternate operating systems to be booted in contradiction wit...
HPSBPI02851 SSRT101078 rev.2 - Certain HP LaserJet Pro Printers, Unauthorized Access to Data
Potential Security Impact Unauthorized access to data VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet Pro printers. The vulnerability could be exploited remotely to gain unauthorized access to data. RESOLUTION HP has provided firmware updates...
HPSBPI02828 SSRT100778 rev.2 - HP LaserJet and Color LaserJet, Cross-Site Scripting (XSS)
Potential Security Impact Cross-site scripting XSS VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet and Color LaserJet printers. The vulnerability could be exploited to allow cross-site scripting XSS. RESOLUTION HP has provided firmware updates...
HPSBPI02807 SSRT100928 rev.2 - HP LaserJet Pro 400 Multi Function Printers, Remote Unauthorized Access
Potential Security Impact Remote unauthorized access VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with certain HP LaserJet Pro 400 Multifunction Printers MFP. The vulnerabilities could be remotely exploited to allow unauthorized access. RESOLUTION HP has provided...
HPSBPI02779 SSRT100855 rev.2 - HP Web Jetadmin v8.x Running on Windows, Remote Cross Site Scripting (XSS)
Potential Security Impact Remote cross site scripting XSS VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP Web Jetadmin v8.x. These vulnerabilities could be exploited remotely resulting in cross site scripting XSS. RESOLUTION HP has provided HP Web Jetadmin...
HPSBPI02733 SSRT100646 rev.2 - Certain HP LaserJet Printers, Remote Unauthorized Access to Files
Potential Security Impact Remote unauthorized access to files VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet printers. The vulnerability could be exploited remotely to gain unauthorized access to files. RESOLUTION HP has provided firmware...
HPSBPI02732 SSRT100435 rev.2 - HP Managed Printing Administration, Remote Execution of Arbitrary Code and Other Vulnerabilities
Potential Security Impact Remote execution of arbitrary code, directory traversal, creation and deletion of arbitrary files, unauthorized access to application database VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP Managed Printing Administration. These...
HPSBPI02728 SSRT100692 rev.7 - Certain HP Printers and HP Digital Senders, Remote Firmware Update Enabled by Default
Potential Security Impact Remote firmware update enabled by default VULNERABILITY SUMMARY In November, 2011, a potential security vulnerability was identified with certain HP printers and HP digital senders. The vulnerability could be exploited remotely to install unauthorized printer firmware...
HPSBPI02711 SSRT100647 rev.2 - HP MFP Digital Sending Software Running on Windows, Local Information Disclosure
Potential Security Impact Local information disclosure VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP MFP Digital Sending Software running on Windows. The vulnerability could result in disclosure of personal information contained in workflow metadata to...
HPSBPI02698 SSRT100404 rev.3 - HP Easy Printer Care Software Running on Windows, Remote Execution of Arbitrary Code
Potential Security Impact Remote execution of arbitrary code VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Easy Printer Care Software Running on Windows. The vulnerability can be remotely exploited to write arbitrary files to the system and execute them via...
HPSBPI02794 SSRT100542 rev.2 - Certain HP Photosmart Printers, Remote Denial of Service (DoS)
Potential Security Impact Remote Denial of Service DoS VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP Photosmart printers. The vulnerability could be exploited remotely to create a Denial of Service DoS. RESOLUTION HP has provided firmware updates to...
HPSBPI02640 SSRT100410 rev.2 - HP MFP Digital Sending Software Running on Windows, Authentication Bypass
Potential Security Impact Authentication bypass VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP MFP Digital Sending Software running on Windows. The vulnerability could cause authentication to be disabled for managed devices. This could allow access to the...
HPSBPI02635 SSRT100391 rev.2 - HP Web Jetadmin Running on Windows, Local Unauthorized Access to Managed Resources
Potential Security Impact Local unauthorized access to managed resources VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Web Jetadmin running on Windows. The vulnerability could be exploited by a local user to gain unauthorized access to resources managed by W...
HPSBMI02614 SSRT100344 rev.2 - HP webOS Contacts Application, Remote Execution of Arbitrary Code
Potential Security Impact Remote execution of arbitrary code VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP webOS Contacts Application. This vulnerability could be exploited to execute arbitrary HTML or JavaScript. RESOLUTION The vulnerability can be resolved...
HPSBMI02573 SSRT100227 rev.1 - Palm webOS, webOS Doc Viewer, Execution of Arbitrary Code
Potential Security Impact Execution of arbitrary code VULNERABILITY SUMMARY A potential security vulnerability has been identified with Palm webOS Doc Viewer. This vulnerability could be exploited to execute arbitrary code. RESOLUTION The vulnerability can be resolved by updating affected devices...
HPSBPI02656 SSRT090262 rev.2 - Certain HP Photosmart Printers, Remote Unauthorized Access, Cross Site Scripting (XSS)
Potential Security Impact Remote unauthorized access to data, cross site scripting XSS VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with certain HP Photosmart printers. These vulnerabilities could be exploited remotely for cross site scripting XSS or to gain...
HPSBPI02532 SSRT100111 rev.3 - HP MFP Digital Sending Software Running on Windows, Local Unauthorized Access
Potential Security Impact Local unauthorized access VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP MFP Digital Sending Software running on Windows. The vulnerability could be exploited by a local user to gain unauthorized access to "Send to e-mail" and other...
HPSBPI02507 SSRT100012 rev.3 - HP DreamScreen, Remote Disclosure of Information
Potential Security Impact Remote disclosure of information VULNERABILITY SUMMARY A potential security vulnerability has been identified with web-connected HP DreamScreen. This vulnerability could be exploited remotely to allow disclosure of information. RESOLUTION HP has provided the following...
HPSBPI02575 SSRT090255 rev.3 - HP LaserJet MFP Printers, HP Color LaserJet MFP Printers, Certain HP LaserJet Printers, Remote Unauthorized Access to Files
Potential Security Impact Remote unauthorized access to files VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP LaserJet MFP printers, HP Color LaserJet MFP printers, and certain HP LaserJet printers. The vulnerability could be exploited remotely to gain...
HPSBPI02500 SSRT090263 rev.2 - HP Web Jetadmin, Remote Unauthorized Access to Data, Denial of Service (DoS)
Potential Security Impact Remote unauthorized access to data, Denial of Service DoS VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP Web Jetadmin. The vulnerabilities could be exploited remotely to gain unauthorized access to data or to create a Denial of...
HPSBPI02472 SSRT090196 rev.4 - Certain HP Color LaserJet Printers, Remote Unauthorized Access to Data, Denial of Service
Potential Security Impact Remote unauthorized access to data, Denial of Service DoS VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP Color LaserJet printers. The vulnerability could be exploited remotely to gain unauthorized access to data or to create ...
HPSBPI02463 SSRT090061 rev.2 - HP LaserJet Printers, HP Color LaserJet Printers, Remote Cross Site Scripting (XSS)
Potential Security Impact Remote Cross Site Scripting XSS VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with certain HP LaserJet printers, HP Color LaserJet printers and HP Digital Senders. The vulnerabilities could be exploited remotely by Cross Site Scripting XSS...
HPSBPI02398 SSRT080166 rev.7 - Certain HP LaserJet Printers, HP Color LaserJet Printers, and HP Digital Senders, Remote Unauthorized Access to Files
Potential Security Impact Remote unauthorized access to files VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet printers, HP Color LaserJet printers and HP Digital Senders. The vulnerability could be exploited remotely to gain unauthorized acces...
HPSBPI02263 SSRT3512 rev.2 - Re-release of HPSBMI0002 HP Jetdirect, Remote Unauthorized Access, Denial of Service (DoS)
Potential Security Impact Remote unauthorized access, Denial of Service DoS VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Jetdirect. The vulnerability could be exploited to allow remote unauthorized access or to create a Denial of Service DoS. RESOLUTION HP...