Vulnerability-Lookup

CVE-2012-5215 (GCVE-0-2012-5215)

Vulnerability from cvelistv5 – Published: 2013-03-09 11:01 – Updated: 2024-09-17 03:22

Summary

Severity ?

No CVSS data available.

CWE

Assigner

References

URL

CERTA-2013-AVI-175

Vulnerability from certfr_avis - Published: 2013-03-08 - Updated: 2013-03-08

Une vulnérabilité a été corrigée dans HP LaserJet Pro. Elle permet à un attaquant de provoquer un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	HP LaserJet Pro P1606dn CE749A
N/A	N/A	HP LaserJet Pro M1214nfh MFP CE842A
N/A	N/A	HP LaserJet Pro M1213nf MFP CE845A
N/A	N/A	HP LaserJet Pro M1219nf MFP CE846A
N/A	N/A	HP LaserJet Pro P1102w CE658A
N/A	N/A	HP LaserJet Pro CP1025nw CE918A
N/A	N/A	HP LaserJet Pro CP1025nw CE914A
N/A	N/A	HP HotSpot LaserJet Pro M1218nfs MFP B4K88A
N/A	N/A	HP LaserJet Pro M1212nf MFP CE841A
N/A	N/A	HP LaserJet Pro M1216nfh Multifunction Printer CE843A
N/A	N/A	HP LaserJet Pro M1217nfw Multifunction Printer CE844A
N/A	N/A	HP LaserJet Pro P1102w CE657A

References

Title

Publication Time

FKIE_CVE-2012-5215

Vulnerability from fkie_nvd - Published: 2013-03-09 11:55 - Updated: 2025-04-11 00:51

Severity ?

Summary

References

URL	Tags
hp-security-alert@hp.com	http://www.kb.cert.org/vuls/id/782451	US Government Resource
hp-security-alert@hp.com	https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03684249	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/782451	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03684249	Vendor Advisory

Impacted products

Vendor	Product	Version
hp	hotspot_laserjet_pro_m1218nfs_mfp	b4k88a
hp	laserjet_pro_m1212nf_mfp	ce841a
hp	laserjet_pro_m1213nf_mfp	ce845a
hp	laserjet_pro_m1214nfh_mfp	ce842a
hp	laserjet_pro_m1216nfh_multifunction_printer	ce843a
hp	laserjet_pro_m1217nfw_multifunction_printer	ce844a
hp	laserjet_pro_m1219nf_mfp	ce846a
hp	hotspot_laserjet_pro_m1218nfs_mfp_firmware	*
hp	laserjet_pro_m1212nf_mfp_firmware	*
hp	laserjet_pro_m1213nf_mfp_firmware	*
hp	laserjet_pro_m1214nfh_mfp_firmware	*
hp	laserjet_pro_m1216nfh_multifunction_printer_firmware	*
hp	laserjet_pro_m1217nfw_multifunction_printer_firmware	*
hp	laserjet_pro_m1219nf_mfp_firmware	*
hp	laserjet_pro_cp1025nw	ce914a
hp	laserjet_pro_cp1025nw	ce918a
hp	laserjet_pro_cp1025nw_firmware	*
hp	laserjet_pro_p1102w	ce657a
hp	laserjet_pro_p1102w	ce658a
hp	laserjet_pro_p1606dn	ce749a
hp	laserjet_pro_p1102w_firmware	20130212
hp	laserjet_pro_p1606dn_firmware	20130212

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:hp:hotspot_laserjet_pro_m1218nfs_mfp:b4k88a:*:*:*:*:*:*:*",
              "matchCriteriaId": "ABB2981D-A484-4922-A184-E070914C3A8F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1212nf_mfp:ce841a:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCF4D71C-921B-4AF3-9E6B-7AE207AE4419",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1213nf_mfp:ce845a:*:*:*:*:*:*:*",
              "matchCriteriaId": "9AA819B9-2554-4391-A1B4-73F46B3C50DC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1214nfh_mfp:ce842a:*:*:*:*:*:*:*",
              "matchCriteriaId": "0801E1B3-2A41-40FF-84F1-572E1D4B95B4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1216nfh_multifunction_printer:ce843a:*:*:*:*:*:*:*",
              "matchCriteriaId": "311577B0-9EE2-4A75-9F1D-D4014957F6F6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1217nfw_multifunction_printer:ce844a:*:*:*:*:*:*:*",
              "matchCriteriaId": "5C1671EF-3C06-4D9D-B55E-7814AE2ABFFE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1219nf_mfp:ce846a:*:*:*:*:*:*:*",
              "matchCriteriaId": "0DAEB3AE-F47F-4037-A171-0DCB5076874F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:hp:hotspot_laserjet_pro_m1218nfs_mfp_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A9F86C87-8980-4CE1-B8D0-5CAB7A432125",
              "versionEndIncluding": "20130210",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1212nf_mfp_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7ACC899C-2EF6-4AFC-9392-A3AE950BAFB9",
              "versionEndIncluding": "20130210",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1213nf_mfp_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6F4C6DD-1716-4160-934F-451C8A402CE6",
              "versionEndIncluding": "20130210",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1214nfh_mfp_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "34CCDA87-08FF-47F4-BE3C-65E5FBCE997F",
              "versionEndIncluding": "20130210",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1216nfh_multifunction_printer_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "BD0DDBE9-0C42-4D0A-A034-3151D79387FB",
              "versionEndIncluding": "20130210",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1217nfw_multifunction_printer_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D5D3B769-F587-4997-B8AE-966ED176FA53",
              "versionEndIncluding": "20130210",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_m1219nf_mfp_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7AA12562-EC1E-4B26-8CAA-4F97D7956478",
              "versionEndIncluding": "20130210",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_cp1025nw:ce914a:*:*:*:*:*:*:*",
              "matchCriteriaId": "B78FC8AF-8239-4F50-BF0C-694FED2401EE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_cp1025nw:ce918a:*:*:*:*:*:*:*",
              "matchCriteriaId": "51E96110-DF07-4BA2-AC1A-2E4146202B35",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_cp1025nw_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C278C0DB-3C2A-407A-BA75-ECEC1C043CD5",
              "versionEndIncluding": "201302121",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_p1102w:ce657a:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7898841-6CD8-4F8A-ACF9-5C583D894FE5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_p1102w:ce658a:*:*:*:*:*:*:*",
              "matchCriteriaId": "1F96B17C-FB6A-4C50-8971-E7A6822C1B6F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_p1606dn:ce749a:*:*:*:*:*:*:*",
              "matchCriteriaId": "8A27DAC5-DA14-439B-B677-C14BA6FC6358",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_p1102w_firmware:20130212:*:*:*:*:*:*:*",
              "matchCriteriaId": "E32A883E-AAE8-412B-82BD-E1A254688942",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:hp:laserjet_pro_p1606dn_firmware:20130212:*:*:*:*:*:*:*",
              "matchCriteriaId": "15DFB2C1-F887-4B04-8419-9DD9293F10BA",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability on the HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, and M1219nf, and HotSpot LaserJet Pro M1218nfs, with firmware before 20130211; LaserJet Pro CP1025nw with firmware before 20130212; and LaserJet Pro P1102w and P1606dn with firmware before 20130213 allows remote attackers to modify data or cause a denial of service via unknown vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, y M1219nf, y HotSpot LaserJet Pro M1218nfs, con firmware anterior a 20130211; LaserJet Pro CP1025nw con firmware anterior a 20130212; y LaserJet Pro P1102w y P1606dn con firmware anterior a v20130213 permite a atacantes remotos modificar los datos o causar una denegaci\u00f3n de servicio a trav\u00e9s de vectores desconocidos."
    }
  ],
  "id": "CVE-2012-5215",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 8.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 9.2,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2013-03-09T11:55:01.570",
  "references": [
    {
      "source": "hp-security-alert@hp.com",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/782451"
    },
    {
      "source": "hp-security-alert@hp.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03684249"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/782451"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03684249"
    }
  ],
  "sourceIdentifier": "hp-security-alert@hp.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

VAR-201303-0046

Vulnerability from variot - Updated: 2025-04-11 23:02

Unspecified vulnerability on the HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, and M1219nf, and HotSpot LaserJet Pro M1218nfs, with firmware before 20130211; LaserJet Pro CP1025nw with firmware before 20130212; and LaserJet Pro P1102w and P1606dn with firmware before 20130213 allows remote attackers to modify data or cause a denial of service via unknown vectors. Certain HP LaserJet Professional printers contain a telnet debug shell which could allow a remote attacker to gain unauthorized access to data. Remote attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03684249

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03684249 Version: 1

HPSBPI02851 SSRT101078 rev.1 - Certain HP LaserJet Pro Printers, Unauthorized Access to Data

NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

Release Date: 2013-03-06 Last Updated: 2013-03-06

Potential Security Impact: Unauthorized access to data

Source: Hewlett-Packard Company, HP Software Security Response Team

VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet Pro printers.

References: CVE-2012-5215 (VU#782451, SSRT101078)

SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.

RESOLUTION

HP has provided updated printer firmware to resolve this issue. Browse to www.hp.com/go/support and then:

Select "Drivers & Software" Enter the HP product name listed in the table above into the search field Click on "Search" If the search returns a list of products click on the appropriate product Under "Select operating system. select your operating system, click Next Under .Select a Download. Select "Firmware" Click Download to obtain the Firmware

HISTORY Version: 1 (rev.1) - 6 March 2013 Initial release

Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

Security Bulletin List: A list of HP Security Bulletins, updated periodically, is contained in HP Security Notice HPSN-2011-001: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c02964430

Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

Copyright 2013 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.

-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux)

iEYEARECAAYFAlE31sgACgkQ4B86/C0qfVmILwCgjUzmV+4yR3vFRndCNZYmu44l ZEUAoLp6y3fPtayoJQh5Vy6COwxkXHKN =FX3x -----END PGP SIGNATURE-----

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201303-0046",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "laserjet pro p1606dn",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "ce749a"
      },
      {
        "model": "laserjet pro m1216nfh multifunction printer",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "ce843a"
      },
      {
        "model": "laserjet pro m1219nf mfp",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "ce846a"
      },
      {
        "model": "laserjet pro cp1025nw",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "ce918a"
      },
      {
        "model": "laserjet pro m1214nfh mfp",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "ce842a"
      },
      {
        "model": "hotspot laserjet pro m1218nfs mfp",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "b4k88a"
      },
      {
        "model": "laserjet pro p1102w",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "ce657a"
      },
      {
        "model": "laserjet pro m1217nfw multifunction printer",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "ce844a"
      },
      {
        "model": "laserjet pro p1102w",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "ce658a"
      },
      {
        "model": "laserjet pro cp1025nw",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "hp",
        "version": "ce914a"
      },
      {
        "model": "laserjet pro m1213nf mfp",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "hp",
        "version": "20130210"
      },
      {
        "model": "laserjet pro m1219nf mfp",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "hp",
        "version": "20130210"
      },
      {
        "model": "laserjet pro m1216nfh multifunction printer",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "hp",
        "version": "20130210"
      },
      {
        "model": "laserjet pro cp1025nw",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "hp",
        "version": "201302121"
      },
      {
        "model": "laserjet pro m1213nf mfp",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "hp",
        "version": "ce845a"
      },
      {
        "model": "laserjet pro m1214nfh mfp",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "hp",
        "version": "20130210"
      },
      {
        "model": "laserjet pro p1102w",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "hp",
        "version": "20130212"
      },
      {
        "model": "laserjet pro p1606dn",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "hp",
        "version": "20130212"
      },
      {
        "model": "laserjet pro m1217nfw multifunction printer",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "hp",
        "version": "20130210"
      },
      {
        "model": "laserjet pro m1212nf mfp",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "hp",
        "version": "20130210"
      },
      {
        "model": "hotspot laserjet pro m1218nfs mfp",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "hp",
        "version": "20130210"
      },
      {
        "model": "laserjet pro m1212nf mfp",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "hp",
        "version": "ce841a"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "hewlett packard",
        "version": null
      },
      {
        "model": "hp laserjet",
        "scope": null,
        "trust": 0.8,
        "vendor": "hewlett packard",
        "version": null
      },
      {
        "model": "laserjet pro p1606dn",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "hp",
        "version": "0"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#782451"
      },
      {
        "db": "BID",
        "id": "58377"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-5215"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/h:hp:laserjet",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Christoph von Wittich of Hentschke Bau GmbH",
    "sources": [
      {
        "db": "BID",
        "id": "58377"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2012-5215",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 8.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 8.6,
            "id": "CVE-2012-5215",
            "impactScore": 9.2,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 1.9,
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "availabilityRequirement": "NOT DEFINED",
            "baseScore": 8.8,
            "collateralDamagePotential": "LOW",
            "confidentialityImpact": "NONE",
            "confidentialityRequirement": "NOT DEFINED",
            "enviromentalScore": 1.6,
            "exploitability": "PROOF-OF-CONCEPT",
            "exploitabilityScore": 8.6,
            "id": "CVE-2012-5215",
            "impactScore": 9.2,
            "integrityImpact": "COMPLETE",
            "integrityRequirement": "NOT DEFINED",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "remediationLevel": "OFFICIAL FIX",
            "reportConfidence": "UNCOFIRMED",
            "severity": "HIGH",
            "targetDistribution": "LOW",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vector_string": "AV:N/AC:M/Au:N/C:N/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 8.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 8.6,
            "id": "VHN-58496",
            "impactScore": 9.2,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:N/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2012-5215",
            "trust": 1.6,
            "value": "HIGH"
          },
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2012-5215",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201303-142",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-58496",
            "trust": 0.1,
            "value": "HIGH"
          },
          {
            "author": "VULMON",
            "id": "CVE-2012-5215",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#782451"
      },
      {
        "db": "VULHUB",
        "id": "VHN-58496"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-5215"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-5215"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Unspecified vulnerability on the HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, and M1219nf, and HotSpot LaserJet Pro M1218nfs, with firmware before 20130211; LaserJet Pro CP1025nw with firmware before 20130212; and LaserJet Pro P1102w and P1606dn with firmware before 20130213 allows remote attackers to modify data or cause a denial of service via unknown vectors. Certain HP LaserJet Professional printers contain a telnet debug shell which could allow a remote attacker to gain unauthorized access to data. \nRemote attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c03684249\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c03684249\nVersion: 1\n\nHPSBPI02851 SSRT101078 rev.1 - Certain HP LaserJet Pro Printers, Unauthorized\nAccess to Data\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2013-03-06\nLast Updated: 2013-03-06\n\nPotential Security Impact: Unauthorized access to data\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nA potential security vulnerability has been identified with certain HP\nLaserJet Pro printers. \n\nReferences: CVE-2012-5215 (VU#782451, SSRT101078)\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \n\nRESOLUTION\n\nHP has provided updated printer firmware to resolve this issue. Browse to www.hp.com/go/support and\nthen:\n\nSelect \"Drivers \u0026 Software\"\nEnter the HP product name listed in the table above into the search field\nClick on \"Search\"\nIf the search returns a list of products click on the appropriate product\nUnder \"Select operating system. select your operating system, click Next\nUnder .Select a Download. Select \"Firmware\"\nClick Download to obtain the Firmware\n\nHISTORY\nVersion: 1 (rev.1) - 6 March 2013 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin List: A list of HP Security Bulletins, updated\nperiodically, is contained in HP Security Notice HPSN-2011-001:\nhttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c02964430\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttp://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2013 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits;damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. \n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.13 (GNU/Linux)\n\niEYEARECAAYFAlE31sgACgkQ4B86/C0qfVmILwCgjUzmV+4yR3vFRndCNZYmu44l\nZEUAoLp6y3fPtayoJQh5Vy6COwxkXHKN\n=FX3x\n-----END PGP SIGNATURE-----\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2012-5215"
      },
      {
        "db": "CERT/CC",
        "id": "VU#782451"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      },
      {
        "db": "BID",
        "id": "58377"
      },
      {
        "db": "VULHUB",
        "id": "VHN-58496"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-5215"
      },
      {
        "db": "PACKETSTORM",
        "id": "120711"
      }
    ],
    "trust": 2.88
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.kb.cert.org/vuls/id/782451",
        "trust": 0.8,
        "type": "poc"
      },
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-58496",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#782451"
      },
      {
        "db": "VULHUB",
        "id": "VHN-58496"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#782451",
        "trust": 3.4
      },
      {
        "db": "NVD",
        "id": "CVE-2012-5215",
        "trust": 3.0
      },
      {
        "db": "JVN",
        "id": "JVNVU98055254",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-001789",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201303-142",
        "trust": 0.7
      },
      {
        "db": "BID",
        "id": "58377",
        "trust": 0.4
      },
      {
        "db": "PACKETSTORM",
        "id": "120711",
        "trust": 0.2
      },
      {
        "db": "VULHUB",
        "id": "VHN-58496",
        "trust": 0.1
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-5215",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#782451"
      },
      {
        "db": "VULHUB",
        "id": "VHN-58496"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-5215"
      },
      {
        "db": "BID",
        "id": "58377"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      },
      {
        "db": "PACKETSTORM",
        "id": "120711"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-5215"
      }
    ]
  },
  "id": "VAR-201303-0046",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-58496"
      }
    ],
    "trust": 0.6789115714285715
  },
  "last_update_date": "2025-04-11T23:02:58.747000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "HPSBPI02851 SSRT101078 rev.1 - Certain HP LaserJet Pro Printers, Unauthorized Access to Data",
        "trust": 0.8,
        "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c03684249"
      },
      {
        "title": "HP LaserJet Pro Printers Repair measures for information disclosure vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=99460"
      },
      {
        "title": "HP: SUPPORT COMMUNICATION- SECURITY BULLETIN\nHPSBPI02851 SSRT101078 rev.2 - Certain HP LaserJet Pro Printers, Unauthorized Access to Data",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=21ade6eb0add29cefc1e0fe7656a70b8"
      },
      {
        "title": "HP: SUPPORT COMMUNICATION- SECURITY BULLETIN\nHPSBPI02851 SSRT101078 rev.2 - Certain HP LaserJet Pro Printers, Unauthorized Access to Data",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=6e1bdb1a6f69904b78092fe4e02552c0"
      },
      {
        "title": "HP: HPSBPI02851 SSRT101078 rev.2 - Certain HP LaserJet Pro Printers, Unauthorized Access to Data",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=HPSBPI02851"
      }
    ],
    "sources": [
      {
        "db": "VULMON",
        "id": "CVE-2012-5215"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-noinfo",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2012-5215"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.7,
        "url": "http://www.kb.cert.org/vuls/id/782451"
      },
      {
        "trust": 2.6,
        "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03684249"
      },
      {
        "trust": 0.8,
        "url": "about vulnerability notes"
      },
      {
        "trust": 0.8,
        "url": "contact us about this vulnerability"
      },
      {
        "trust": 0.8,
        "url": "provide a vendor statement"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-5215"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/cert/jvnvu98055254/index.html"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-5215"
      },
      {
        "trust": 0.3,
        "url": "http://www.hp.com"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/.html"
      },
      {
        "trust": 0.1,
        "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=28519"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      },
      {
        "trust": 0.1,
        "url": "http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
      },
      {
        "trust": 0.1,
        "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2012-5215"
      },
      {
        "trust": 0.1,
        "url": "https://www.hp.com/go/support"
      },
      {
        "trust": 0.1,
        "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#782451"
      },
      {
        "db": "VULHUB",
        "id": "VHN-58496"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-5215"
      },
      {
        "db": "BID",
        "id": "58377"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      },
      {
        "db": "PACKETSTORM",
        "id": "120711"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-5215"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#782451"
      },
      {
        "db": "VULHUB",
        "id": "VHN-58496"
      },
      {
        "db": "VULMON",
        "id": "CVE-2012-5215"
      },
      {
        "db": "BID",
        "id": "58377"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      },
      {
        "db": "PACKETSTORM",
        "id": "120711"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-5215"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2013-03-11T00:00:00",
        "db": "CERT/CC",
        "id": "VU#782451"
      },
      {
        "date": "2013-03-09T00:00:00",
        "db": "VULHUB",
        "id": "VHN-58496"
      },
      {
        "date": "2013-03-09T00:00:00",
        "db": "VULMON",
        "id": "CVE-2012-5215"
      },
      {
        "date": "2013-03-06T00:00:00",
        "db": "BID",
        "id": "58377"
      },
      {
        "date": "2013-03-12T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      },
      {
        "date": "2013-03-08T04:08:46",
        "db": "PACKETSTORM",
        "id": "120711"
      },
      {
        "date": "2013-03-11T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      },
      {
        "date": "2013-03-09T11:55:01.570000",
        "db": "NVD",
        "id": "CVE-2012-5215"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2013-03-11T00:00:00",
        "db": "CERT/CC",
        "id": "VU#782451"
      },
      {
        "date": "2019-10-09T00:00:00",
        "db": "VULHUB",
        "id": "VHN-58496"
      },
      {
        "date": "2019-10-09T00:00:00",
        "db": "VULMON",
        "id": "CVE-2012-5215"
      },
      {
        "date": "2013-03-06T00:00:00",
        "db": "BID",
        "id": "58377"
      },
      {
        "date": "2013-03-19T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2013-001789"
      },
      {
        "date": "2019-10-17T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      },
      {
        "date": "2025-04-11T00:51:21.963000",
        "db": "NVD",
        "id": "CVE-2012-5215"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "HP LaserJet Professional printer telnet debug shell vulnerability",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#782451"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "information disclosure",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201303-142"
      }
    ],
    "trust": 0.6
  }
}

GSD-2012-5215

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2012-5215

Aliases

CVE-2012-5215

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2012-5215",
    "description": "Unspecified vulnerability on the HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, and M1219nf, and HotSpot LaserJet Pro M1218nfs, with firmware before 20130211; LaserJet Pro CP1025nw with firmware before 20130212; and LaserJet Pro P1102w and P1606dn with firmware before 20130213 allows remote attackers to modify data or cause a denial of service via unknown vectors.",
    "id": "GSD-2012-5215"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2012-5215"
      ],
      "details": "Unspecified vulnerability on the HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, and M1219nf, and HotSpot LaserJet Pro M1218nfs, with firmware before 20130211; LaserJet Pro CP1025nw with firmware before 20130212; and LaserJet Pro P1102w and P1606dn with firmware before 20130213 allows remote attackers to modify data or cause a denial of service via unknown vectors.",
      "id": "GSD-2012-5215",
      "modified": "2023-12-13T01:20:19.246988Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "hp-security-alert@hp.com",
        "ID": "CVE-2012-5215",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Unspecified vulnerability on the HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, and M1219nf, and HotSpot LaserJet Pro M1218nfs, with firmware before 20130211; LaserJet Pro CP1025nw with firmware before 20130212; and LaserJet Pro P1102w and P1606dn with firmware before 20130213 allows remote attackers to modify data or cause a denial of service via unknown vectors."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "SSRT101078",
            "refsource": "HP",
            "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03684249"
          },
          {
            "name": "HPSBPI02851",
            "refsource": "HP",
            "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03684249"
          },
          {
            "name": "VU#782451",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/782451"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1213nf_mfp:ce845a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1216nfh_multifunction_printer:ce843a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1217nfw_multifunction_printer:ce844a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1219nf_mfp:ce846a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:hotspot_laserjet_pro_m1218nfs_mfp:b4k88a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1212nf_mfp:ce841a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1214nfh_mfp:ce842a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:hotspot_laserjet_pro_m1218nfs_mfp_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "20130210",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1213nf_mfp_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "20130210",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1216nfh_multifunction_printer_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "20130210",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1217nfw_multifunction_printer_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "20130210",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1219nf_mfp_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "20130210",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1212nf_mfp_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "20130210",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_m1214nfh_mfp_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "20130210",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_cp1025nw:ce914a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_cp1025nw:ce918a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_cp1025nw_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "201302121",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_p1102w:ce657a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_p1102w:ce658a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_p1606dn:ce749a:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_p1606dn_firmware:20130212:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:laserjet_pro_p1102w_firmware:20130212:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "hp-security-alert@hp.com",
          "ID": "CVE-2012-5215"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability on the HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, and M1219nf, and HotSpot LaserJet Pro M1218nfs, with firmware before 20130211; LaserJet Pro CP1025nw with firmware before 20130212; and LaserJet Pro P1102w and P1606dn with firmware before 20130213 allows remote attackers to modify data or cause a denial of service via unknown vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "SSRT101078",
              "refsource": "HP",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03684249"
            },
            {
              "name": "VU#782451",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/782451"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 8.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 9.2,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2019-10-09T23:06Z",
      "publishedDate": "2013-03-09T11:55Z"
    }
  }
}

GHSA-4X7C-3V6C-CVC3

Vulnerability from github – Published: 2022-05-13 01:39 – Updated: 2022-05-13 01:39

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2012-5215"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2013-03-09T11:55:00Z",
    "severity": "HIGH"
  },
  "details": "Unspecified vulnerability on the HP LaserJet Pro M1212nf, M1213nf, M1214nfh, M1216nfh, M1217nfw, and M1219nf, and HotSpot LaserJet Pro M1218nfs, with firmware before 20130211; LaserJet Pro CP1025nw with firmware before 20130212; and LaserJet Pro P1102w and P1606dn with firmware before 20130213 allows remote attackers to modify data or cause a denial of service via unknown vectors.",
  "id": "GHSA-4x7c-3v6c-cvc3",
  "modified": "2022-05-13T01:39:19Z",
  "published": "2022-05-13T01:39:19Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5215"
    },
    {
      "type": "WEB",
      "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03684249"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/782451"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2012-5215 (GCVE-0-2012-5215)

CERTA-2013-AVI-175

Solution

FKIE_CVE-2012-5215

VAR-201303-0046

GSD-2012-5215

GHSA-4X7C-3V6C-CVC3

Tags

Sightings

Nomenclature