FKIE_CVE-2017-2747
Vulnerability from fkie_nvd - Published: 2018-01-23 16:29 - Updated: 2024-11-21 03:24
Severity
Summary
HP has identified a potential security vulnerability before IG_11_00_00.10 for DesignJet T790, T795, T1300, T2300, before MRY_04_05_00.5 for DesignJet T920, T930, T1500, T1530, T2500, T2530, before AENEAS_03_04_00.9 for DesignJet T3500, before NEXUS_01_12_00.11 for Latex 310, 330, 360, 370, before NEXUS_03_12_00.15 for Latex 315, 335, 365, 375, before STORM_00_05_01.6 for Latex 560, 570 and Latex 110 that may expose the credentials of the SMTP server configured to receive and process emails generated by the printers.
References
| URL | Tags | ||
|---|---|---|---|
| hp-security-alert@hp.com | https://support.hp.com/us-en/document/c05624457 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.hp.com/us-en/document/c05624457 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| hp | t790_firmware | * | |
| hp | t790 | - | |
| hp | t795_firmware | * | |
| hp | t795 | - | |
| hp | t1300_firmware | * | |
| hp | t1300 | - | |
| hp | t2300_firmware | * | |
| hp | t2300 | - | |
| hp | t920_firmware | * | |
| hp | t920 | - | |
| hp | t930_firmware | * | |
| hp | t930 | - | |
| hp | t1500_firmware | * | |
| hp | t1500 | - | |
| hp | t1530_firmware | * | |
| hp | t1530 | - | |
| hp | t2500_firmware | * | |
| hp | t2500 | - | |
| hp | t2530_firmware | * | |
| hp | t2530 | - | |
| hp | t3500_firmware | * | |
| hp | t3500 | - | |
| hp | 110_firmware | * | |
| hp | 110 | - | |
| hp | 310_firmware | * | |
| hp | 310 | - | |
| hp | 330_firmware | * | |
| hp | 330 | - | |
| hp | 360_firmware | * | |
| hp | 360 | - | |
| hp | 370_firmware | * | |
| hp | 370 | - | |
| hp | 315_firmware | * | |
| hp | 315 | - | |
| hp | 335_firmware | * | |
| hp | 335 | - | |
| hp | 365_firmware | * | |
| hp | 365 | - | |
| hp | 375_firmware | * | |
| hp | 375 | - | |
| hp | 560_firmware | * | |
| hp | 560 | - | |
| hp | 570_firmware | * | |
| hp | 570 | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t790_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4C00C928-3362-4177-BA49-75F2BFC8D16F",
"versionEndIncluding": "ig_11_00_00.09",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t790:-:*:*:*:*:*:*:*",
"matchCriteriaId": "00246A8F-7B86-403E-8AA8-1688F3C7C83F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t795_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C868619A-744F-4CE6-913F-27323C4BBF4A",
"versionEndIncluding": "ig_11_00_00.09",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t795:-:*:*:*:*:*:*:*",
"matchCriteriaId": "36355C24-96D8-4AD0-9E3D-4CEB774A4120",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t1300_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4D96CF5A-30C1-439E-A134-8AEA547B449A",
"versionEndIncluding": "ig_11_00_00.09",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t1300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D36A600-608E-4898-9424-1CB03018C9CD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t2300_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9DA063B8-B14C-475D-B610-95351536907B",
"versionEndIncluding": "ig_11_00_00.09",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t2300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2ED6D1E1-38E6-45F8-8921-1C97D3AB64A7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t920_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "89B870D9-1CA0-4F0B-B6BA-5529953F0A7A",
"versionEndIncluding": "mry_04_05_00.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t920:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E28AA042-BF48-4415-9747-B066602B4E6E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t930_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F36E3938-3931-472E-A49F-E1740C4B3A25",
"versionEndIncluding": "mry_04_05_00.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t930:-:*:*:*:*:*:*:*",
"matchCriteriaId": "10C11195-AB6D-43F3-8D11-325B29BB6ADE",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t1500_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "388CAACB-3295-4ECC-B1D4-BEB17A56AD82",
"versionEndIncluding": "mry_04_05_00.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t1500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0C541BDA-2DB6-4DC0-B554-8A7E8168E4E5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t1530_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A9FF5FBC-B140-4CF4-91A1-668D3F2BC99B",
"versionEndIncluding": "mry_04_05_00.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t1530:-:*:*:*:*:*:*:*",
"matchCriteriaId": "24305406-99AB-4DB9-99FF-C77F6E754B58",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t2500_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3A444FBA-4CB3-4DDE-9E88-F22FF1F319F1",
"versionEndIncluding": "mry_04_05_00.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t2500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3DED692A-7C16-4874-A88B-9E90A62B9388",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t2530_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "CACD235F-0793-4E91-B604-BECBCE440AA3",
"versionEndIncluding": "mry_04_05_00.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t2530:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2377CEE-ED57-41F3-9B06-09C710DD509D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:t3500_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E2442D4B-F1FE-42CE-AA8D-74836CB4E810",
"versionEndIncluding": "aeneas_03_04_00.8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:t3500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "93193C66-82F3-4A33-94D6-698759FD6EB2",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:110_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "860D25D9-91E5-42A3-91D8-CA08DD636CAA",
"versionEndIncluding": "nexus_00_04_53.8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:110:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6E003DD3-0EF6-4CB4-BE56-115B11A62D48",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:310_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "80AC891F-7AC5-422A-9C7F-04A673171F80",
"versionEndIncluding": "nexus_01_12_00.10",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:310:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D8825250-8BB9-4AF4-8240-6AA4930709ED",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:330_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C5838818-E65B-4C1D-A25B-4FB3A40A9D36",
"versionEndIncluding": "nexus_01_12_00.10",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:330:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E0A17B5C-FD32-403F-A897-366EBDF32855",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:360_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "708B2110-6426-4407-A2AD-722655D26BBA",
"versionEndIncluding": "nexus_01_12_00.10",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:360:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B9795B5A-0920-44AA-A12C-07A90523739F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:370_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B5A3D791-6599-4BC0-A13B-2896D1605CB9",
"versionEndIncluding": "nexus_01_12_00.10",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:370:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5478829C-2F62-4D03-9CC8-F9A7209866A5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:315_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7FD23F58-FFA9-4FB8-9963-D6875B4525C8",
"versionEndIncluding": "nexus_03_12_00.14",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:315:-:*:*:*:*:*:*:*",
"matchCriteriaId": "869E4D36-FCD3-46DC-B04D-7656393A2015",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:335_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "01C532BA-6862-40C6-BB74-E6AED7F039AA",
"versionEndIncluding": "nexus_03_12_00.14",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:335:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B5463ECB-F269-4921-9300-A6828FBF7BF8",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:365_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9746DD9D-C6F8-43D5-BCE0-3912FD09AB63",
"versionEndIncluding": "nexus_03_12_00.14",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:365:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B00DA81E-B41B-41CE-B2CA-BFEB4F4C1D14",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:375_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6A2867DD-B36A-4EA4-8594-48AFA62AC48E",
"versionEndIncluding": "nexus_03_12_00.14",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:375:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AD53B891-6000-4D9C-A34C-5A404D5BA941",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:560_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "737EBBB0-1CBF-4057-96C9-F8C94CEE7C2E",
"versionEndIncluding": "storm_00_05_01.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:560:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FA189B68-34A3-46E8-A4D2-844B9024A1D2",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:570_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "40D4AA72-6235-4CC0-AFB9-1F388A249620",
"versionEndIncluding": "storm_00_05_01.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:570:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B3F2909-E2C4-45E9-A5DD-D7ACFE1AF621",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "HP has identified a potential security vulnerability before IG_11_00_00.10 for DesignJet T790, T795, T1300, T2300, before MRY_04_05_00.5 for DesignJet T920, T930, T1500, T1530, T2500, T2530, before AENEAS_03_04_00.9 for DesignJet T3500, before NEXUS_01_12_00.11 for Latex 310, 330, 360, 370, before NEXUS_03_12_00.15 for Latex 315, 335, 365, 375, before STORM_00_05_01.6 for Latex 560, 570 and Latex 110 that may expose the credentials of the SMTP server configured to receive and process emails generated by the printers."
},
{
"lang": "es",
"value": "HP ha identificado una vulnerabilidad potencial de seguridad en versiones anteriores a la IG_11_00_00.10 para DesignJet T790, T795, T1300 y T2300; en versiones anteriores a la MRY_04_05_00.5 para DesignJet T920, T930, T1500, T1530, T2500 y T2530; en versiones anteriores a la AENEAS_03_04_00.9 para DesignJet T3500; en versiones anteriores a la NEXUS_01_12_00.11 para Latex 310, 330, 360 y 370; en versiones anteriores a la NEXUS_03_12_00.15 para Latex 315, 335, 365 y 375; en versiones anteriores a la STORM_00_05_01.6 para Latex 560, 570 y Latex 110 que podr\u00eda exponer las credenciales del servidor SMTP configurado para recibir y procesar emails generados por las impresoras."
}
],
"id": "CVE-2017-2747",
"lastModified": "2024-11-21T03:24:06.410",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-01-23T16:29:01.570",
"references": [
{
"source": "hp-security-alert@hp.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.hp.com/us-en/document/c05624457"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.hp.com/us-en/document/c05624457"
}
],
"sourceIdentifier": "hp-security-alert@hp.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…