FKIE_CVE-2021-3965
Vulnerability from fkie_nvd - Published: 2022-01-14 20:15 - Updated: 2026-06-17 04:06
Severity
Summary
Certain HP DesignJet products may be vulnerable to unauthenticated HTTP requests which allow viewing and downloading of print job previews.
References
Impacted products
{
"affected": [
{
"affectedData": [
{
"product": "HP DesignJet Printer",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "before MRY_07_07_04.1"
},
{
"status": "affected",
"version": "before AENEAS_04_09_06.1"
},
{
"status": "affected",
"version": "before PTR8_03_07_06.1"
},
{
"status": "affected",
"version": "before PX8_06_05_02.1"
},
{
"status": "affected",
"version": "before PX6_06_05_02.1"
}
]
}
],
"source": "hp-security-alert@hp.com"
}
],
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t920_cr355a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8073BF74-52AD-478A-B479-EF33D1114690",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t920_cr355a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2E5286FB-A7A8-4412-A5C5-1C98217763B2",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t920_cr355b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "0F44A9CC-81FB-4C13-9896-DD09E28A064D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t920_cr355b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12207CAC-688E-445B-9DE2-F88A4FA2E0BA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t920_cr354a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "5A8AC076-C10D-4FBF-9B0E-C401E87BDA63",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t920_cr354a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EDC53AC8-800E-43AD-9F18-EBB254CFE41B",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t930_l2y22a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2519F63A-0AA2-42B7-885F-F963B5FAAD0A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t930_l2y22a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8565532B-83EE-4431-873E-A35ACEFF007D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t930_l2y22b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "83068F0E-471B-4590-BBCD-22BDD36AF1B9",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t930_l2y22b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "958C3B99-7BCF-4193-A943-C95AAD4E27E5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t930_l2y21a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6EB41823-72F5-4B1D-9559-AD5A07865D70",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t930_l2y21a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1CB59679-BD4D-4238-BAC5-943C0C7706A8",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t930_l2y21b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "91B9B52E-87C0-478A-9BB4-14E8C3AA5034",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t930_l2y21b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F56143DB-6F62-45A4-BE6C-B589D66346E7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t1530_l2y24a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B8BD1F62-52BF-4F8D-880C-1478F17C9ABE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t1530_l2y24a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EA23C8A1-DB11-419B-A1A4-369CB5C34DBE",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t1530_l2y24b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1E56C51C-2C19-46A9-A063-B3E0D0546EEB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t1530_l2y24b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B536A6C6-CFDC-4402-AB8E-BFBC8ADD9636",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t1530_l2y23a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "951B2AC9-D68E-4A3B-BC2E-61E3D220F128",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t1530_l2y23a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1CF4D973-2265-4757-A26A-8E147A1D9F52",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t2530_l2y25a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B47AEC2E-8FCC-45DA-BA56-D4556E113FB0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t2530_l2y25a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9937AABE-74EA-402B-BCC7-319B7EB226A6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t2530_l2y26a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2CA36028-79D3-4A69-A1A3-F7FA3F554836",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t2530_l2y26a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BC774DB4-80FC-40D2-BCA1-2FB7295E1BE1",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t2530_l2y26b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1E6FE0C0-415F-42E2-AA15-848DB1E9D626",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t2530_l2y26b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C7B55E75-F45D-4700-A940-A2B6A06DFC1F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t3500_b9e24a_firmware:aeneas_04_09_06.1:*:*:*:*:*:*:*",
"matchCriteriaId": "F9B80DC7-2741-4B98-93C8-40BC323F62C8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t3500_b9e24a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AF877049-EBC8-4F17-8100-602FDAF0D53E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t3500_b9e24b_firmware:aeneas_04_09_06.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8D49B757-2D20-446E-AE89-3F0EAB56E660",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t3500_b9e24b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FB999352-9C9A-412C-BAC3-3FFC511E7ADE",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_t3500_b9e25a_firmware:aeneas_04_09_06.1:*:*:*:*:*:*:*",
"matchCriteriaId": "AA339456-4EB3-48C6-B2FF-1522C9D4F470",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_t3500_b9e25a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B11C80A2-F4E8-440C-8959-297EA80195CE",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6800_f2s72a_firmware:ptr8_03_07_06.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A5583242-2CD1-4F1B-A12F-A3EBDA85582D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6800_f2s72a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1D9C6A55-2307-4307-8AAB-A6E00A49BC32",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6800_f2s72ar_firmware:ptr8_03_07_06.1:*:*:*:*:*:*:*",
"matchCriteriaId": "0C11C6CB-6300-4EF8-8C7B-E7703BAEA092",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6800_f2s72ar:-:*:*:*:*:*:*:*",
"matchCriteriaId": "56410F40-FEA1-4612-ABB6-2540E2E57F92",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6800_f2s72b_firmware:ptr8_03_07_06.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A6A4C172-AA85-4FA1-AD84-E126E584405E",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6800_f2s72b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2511B745-D712-486C-85EE-666D645989FF",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6600_f2s71a_firmware:ptr6_03_07_06.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B21E4403-B75F-48AE-91E0-DD9912D87999",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6600_f2s71a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A232850B-E014-421B-B2A1-1990AC275A0A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6600_f2s71ar_firmware:ptr6_03_07_06.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FDAFCC20-610C-477E-9706-F3B8A286102A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6600_f2s71ar:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1836E2B7-BEEA-4C42-81DD-67B171F738C7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6810_2qu12a_firmware:px8_06_05_02.1:*:*:*:*:*:*:*",
"matchCriteriaId": "59414A71-2FC1-407D-8447-6F7075E572CF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6810_2qu12a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FB3D8C9C-EC5C-47AA-B1DB-7ED4ED4D2CC5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6810_2qu12b_firmware:px8_06_05_02.1:*:*:*:*:*:*:*",
"matchCriteriaId": "D25F9980-6304-46B3-A02D-5D22C277A29C",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6810_2qu12b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "645F267C-7F97-41CF-B7DF-76E6DACE9B2D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6810_2qu14a_firmware:px8_06_05_02.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1C7432C4-67AD-4B73-AAFD-8850F9908863",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6810_2qu14a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D3F77868-0E34-4F8B-9388-E591A6B800CA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6810_2qu14b_firmware:px8_06_05_02.1:*:*:*:*:*:*:*",
"matchCriteriaId": "88101F10-1AED-4C1A-94D6-21E74D440D62",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6810_2qu14b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4B10A68C-173E-4BEF-8C1F-C377F018597F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6610_2qu13b_firmware:px6_06_05_02.1:*:*:*:*:*:*:*",
"matchCriteriaId": "E015E131-828A-4DF3-99C9-A1E1B1C49DD2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6610_2qu13b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BE8AFE92-CB14-4A54-8E0C-A2356597D288",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:designjet_z6610_2qu13a_firmware:px6_06_05_02.1:*:*:*:*:*:*:*",
"matchCriteriaId": "337CD957-8DE2-4CB7-A5F2-DFBAD26D83C0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:designjet_z6610_2qu13a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2A07961A-8410-4A63-A259-FCCB0B07835C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Certain HP DesignJet products may be vulnerable to unauthenticated HTTP requests which allow viewing and downloading of print job previews."
},
{
"lang": "es",
"value": "Algunos productos HP DesignJet pueden ser vulnerables a peticiones HTTP no autenticadas que permiten visualizar y descargar vistas previas de trabajos de impresi\u00f3n"
}
],
"id": "CVE-2021-3965",
"lastModified": "2026-06-17T04:06:18.077",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-01-14T20:15:11.637",
"references": [
{
"source": "hp-security-alert@hp.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.hp.com/us-en/document/ish_5268198-5268230-16"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.hp.com/us-en/document/ish_5268198-5268230-16"
}
],
"sourceIdentifier": "hp-security-alert@hp.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-639"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…