CVE-2017-2743
published 2018-01-23CVE-2017-2743: HP has identified a potential security vulnerability with HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide…
PriorityP424medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EPSS
1.27%
66.1th percentile
HP has identified a potential security vulnerability with HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS before 2308214_000901, 2308214_000900, and other firmware versions. The vulnerability could be exploited to perform a cross site scripting (XSS) attack.
Affected
88 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hp | 2a68a_firmware | < 2308214_000911 | 2308214_000911 |
| hp | 2a69a_firmware | < 2308214_000911 | 2308214_000911 |
| hp | 2a70a_firmware | < 2308214_000911 | 2308214_000911 |
| hp | 2a71a_firmware | < 2308214_000911 | 2308214_000911 |
| hp | a2w75a_firmware | < 2308214_000928 | 2308214_000928 |
| hp | a2w76a_firmware | < 2308214_000928 | 2308214_000928 |
| hp | a2w77a_firmware | < 2308214_000930 | 2308214_000930 |
| hp | a2w78a_firmware | < 2308214_000930 | 2308214_000930 |
| hp | a2w79a_firmware | < 2308214_000930 | 2308214_000930 |
| hp | b3g85a_firmware | < 2308214_000912 | 2308214_000912 |
| hp | b5l04a_firmware | < 2308214_000902 | 2308214_000902 |
| hp | b5l05a_firmware | < 2308214_000902 | 2308214_000902 |
| hp | b5l07a_firmware | < 2308214_000902 | 2308214_000902 |
| hp | b5l23a_firmware | < 2308214_000907 | 2308214_000907 |
| hp | b5l24a_firmware | < 2308214_000907 | 2308214_000907 |
| hp | b5l25a_firmware | < 2308214_000907 | 2308214_000907 |
| hp | b5l26a_firmware | < 2308214_000907 | 2308214_000907 |
| hp | b5l46a_firmware | < 2308214_000909 | 2308214_000909 |
| hp | b5l47a_firmware | < 2308214_000909 | 2308214_000909 |
| hp | b5l48a_firmware | < 2308214_000909 | 2308214_000909 |
| hp | c2s11a_firmware | < 2308214_000906 | 2308214_000906 |
| hp | c2s12a_firmware | < 2308214_000906 | 2308214_000906 |
| hp | cc419a_firmware | < 2308214_000901 | 2308214_000901 |
| hp | cc420a_firmware | < 2308214_000901 | 2308214_000901 |
| hp | cc421a_firmware | < 2308214_000901 | 2308214_000901 |
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2018-01-23
Published