CVE-2017-2743

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2017-2743
HP has identified a potential security vulnerability with HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS before 2308214_000901, 2308214_000900, and other firmware versions. The vulnerability could be exploited to perform a cross site scripting (XSS) attack.

6.1 /10

CVSS v3 : MEDIUM

V3 Legend

Vector : AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Exploitability : 2.8 / Impact : 2.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

4.3 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References
Link Resource
https://support.hp.com/us-en/document/c05541569 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:hp:cc419a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cc419a:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:hp:cc420a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cc420a:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:hp:cc421a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cc421a:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:hp:ce709a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce709a:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:hp:ce708a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce708a:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:hp:ce707a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce707a:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:hp:ce503a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce503a:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:hp:ce504a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce504a:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:hp:ce738a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce738a:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:hp:ce989a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce989a:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:hp:ce990a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce990a:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:hp:ce991a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce991a:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:hp:ce992a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce992a:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:hp:ce993a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce993a:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:hp:ce994a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce994a:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:hp:ce995a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce995a:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:hp:ce996a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:ce996a:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:hp:cf081a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf081a:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:hp:cf082a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf082a:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:hp:cf083a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf083a:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:hp:l2717a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:l2717a:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:hp:cd644a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cd644a:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:hp:cd645a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cd644a:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:hp:cf116a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf116a:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:hp:cf117a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf117a:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:hp:cc522a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cc522a:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:hp:cc523a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cc523a:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:hp:cc524a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cc524a:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:hp:cf235a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf235a:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:hp:cf236a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf236a:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:hp:cf238a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf238a:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:hp:cd646a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cd646a:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:hp:cf118a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf118a:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:hp:cf066a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf066a:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:hp:cf067a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf067a:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:hp:cf068a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf068a:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND
cpe:2.3:o:hp:cf069a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf069a:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND
cpe:2.3:o:hp:d3l08a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3l08a:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND
cpe:2.3:o:hp:d3l09a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3l09a:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND
cpe:2.3:o:hp:d3l10a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3l10a:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND
cpe:2.3:o:hp:a2w77a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:a2w77a:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND
cpe:2.3:o:hp:a2w78a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:a2w78a:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND
cpe:2.3:o:hp:a2w79a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:a2w79a:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND
cpe:2.3:o:hp:a2w76a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:a2w76a:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND
cpe:2.3:o:hp:a2w75a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:a2w75a:-:*:*:*:*:*:*:*

Configuration 46 (hide)

AND
cpe:2.3:o:hp:d7p70a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d7p70a:-:*:*:*:*:*:*:*

Configuration 47 (hide)

AND
cpe:2.3:o:hp:d7p71a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d7p71a:-:*:*:*:*:*:*:*

Configuration 48 (hide)

AND
cpe:2.3:o:hp:cf367a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cf367a:-:*:*:*:*:*:*:*

Configuration 49 (hide)

AND
cpe:2.3:o:hp:cz244a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cz244a:-:*:*:*:*:*:*:*

Configuration 50 (hide)

AND
cpe:2.3:o:hp:cz245a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:cz245a:-:*:*:*:*:*:*:*

Configuration 51 (hide)

AND
cpe:2.3:o:hp:b5l04a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l04a:-:*:*:*:*:*:*:*

Configuration 52 (hide)

AND
cpe:2.3:o:hp:b5l05a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l05a:-:*:*:*:*:*:*:*

Configuration 53 (hide)

AND
cpe:2.3:o:hp:b5l07a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l07a:-:*:*:*:*:*:*:*

Configuration 54 (hide)

AND
cpe:2.3:o:hp:c2s11a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:c2s11a:-:*:*:*:*:*:*:*

Configuration 55 (hide)

AND
cpe:2.3:o:hp:c2s12a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:c2s12a:-:*:*:*:*:*:*:*

Configuration 56 (hide)

AND
cpe:2.3:o:hp:j7x28a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j7x28a:-:*:*:*:*:*:*:*

Configuration 57 (hide)

AND
cpe:2.3:o:hp:b5l23a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l23a:-:*:*:*:*:*:*:*

Configuration 58 (hide)

AND
cpe:2.3:o:hp:b5l24a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l24a:-:*:*:*:*:*:*:*

Configuration 59 (hide)

AND
cpe:2.3:o:hp:b5l25a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l25a:-:*:*:*:*:*:*:*

Configuration 60 (hide)

AND
cpe:2.3:o:hp:b5l26a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l26a:-:*:*:*:*:*:*:*

Configuration 61 (hide)

AND
cpe:2.3:o:hp:e6b67a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:e6b67a:-:*:*:*:*:*:*:*

Configuration 62 (hide)

AND
cpe:2.3:o:hp:e6b68a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:e6b68a:-:*:*:*:*:*:*:*

Configuration 63 (hide)

AND
cpe:2.3:o:hp:e6b69a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:e6b69a:-:*:*:*:*:*:*:*

Configuration 64 (hide)

AND
cpe:2.3:o:hp:e6b70a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:e6b70a:-:*:*:*:*:*:*:*

Configuration 65 (hide)

AND
cpe:2.3:o:hp:e6b71a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:e6b71a:-:*:*:*:*:*:*:*

Configuration 66 (hide)

AND
cpe:2.3:o:hp:e6b72a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:e6b72a:-:*:*:*:*:*:*:*

Configuration 67 (hide)

AND
cpe:2.3:o:hp:e6b73a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:e6b73a:-:*:*:*:*:*:*:*

Configuration 68 (hide)

AND
cpe:2.3:o:hp:b3g85a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b3g85a:-:*:*:*:*:*:*:*

Configuration 69 (hide)

AND
cpe:2.3:o:hp:b5l46a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l46a:-:*:*:*:*:*:*:*

Configuration 70 (hide)

AND
cpe:2.3:o:hp:b5l47a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l47a:-:*:*:*:*:*:*:*

Configuration 71 (hide)

AND
cpe:2.3:o:hp:b5l48a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:b5l48a:-:*:*:*:*:*:*:*

Configuration 72 (hide)

AND
cpe:2.3:o:hp:2a68a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:2a68a:-:*:*:*:*:*:*:*

Configuration 73 (hide)

AND
cpe:2.3:o:hp:2a69a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:2a69a:-:*:*:*:*:*:*:*

Configuration 74 (hide)

AND
cpe:2.3:o:hp:2a70a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:2a70a:-:*:*:*:*:*:*:*

Configuration 75 (hide)

AND
cpe:2.3:o:hp:2a71a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:2a71a:-:*:*:*:*:*:*:*

Configuration 76 (hide)

AND
cpe:2.3:o:hp:f2a76a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:f2a76a:-:*:*:*:*:*:*:*

Configuration 77 (hide)

AND
cpe:2.3:o:hp:f2a77a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:f2a77a:-:*:*:*:*:*:*:*

Configuration 78 (hide)

AND
cpe:2.3:o:hp:f2a81a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:f2a81a:-:*:*:*:*:*:*:*

Configuration 79 (hide)

AND
cpe:2.3:o:hp:g1w46a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:g1w46a:-:*:*:*:*:*:*:*

Configuration 80 (hide)

AND
cpe:2.3:o:hp:g1w46v_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:g1w46v:-:*:*:*:*:*:*:*

Configuration 81 (hide)

AND
cpe:2.3:o:hp:g1w47a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:g1w47a:-:*:*:*:*:*:*:*

Configuration 82 (hide)

AND
cpe:2.3:o:hp:g1w47v_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:g1w47v:-:*:*:*:*:*:*:*

Configuration 83 (hide)

AND
cpe:2.3:o:hp:l3u44a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:l3u44a:-:*:*:*:*:*:*:*

Configuration 84 (hide)

AND
cpe:2.3:o:hp:g1w40a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:g1w40a:-:*:*:*:*:*:*:*

Configuration 85 (hide)

AND
cpe:2.3:o:hp:g1w39a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:g1w39a:-:*:*:*:*:*:*:*

Configuration 86 (hide)

AND
cpe:2.3:o:hp:g1w41a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:g1w41a:-:*:*:*:*:*:*:*

Configuration 87 (hide)

AND
cpe:2.3:o:hp:l3u43a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:l3u43a:-:*:*:*:*:*:*:*

Configuration 88 (hide)

AND
cpe:2.3:o:hp:l3u42a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:l3u42a:-:*:*:*:*:*:*:*
History

No history.

Information

Published : 2018-01-23 16:29

Updated : 2024-02-04 19:46

NVD link : CVE-2017-2743

Mitre link : CVE-2017-2743

CVE.ORG link : CVE-2017-2743

JSON object : View

Products Affected

hp

  • f2a81a_firmware
  • cd646a_firmware
  • e6b69a_firmware
  • 2a70a_firmware
  • a2w79a_firmware
  • ce989a
  • c2s12a
  • b5l48a_firmware
  • cz244a_firmware
  • cf066a
  • f2a76a
  • b5l07a_firmware
  • a2w76a_firmware
  • 2a69a
  • e6b68a_firmware
  • d3l08a
  • b5l24a_firmware
  • g1w47v_firmware
  • g1w39a
  • cf067a_firmware
  • f2a81a
  • ce991a
  • f2a77a_firmware
  • cd644a
  • g1w40a_firmware
  • c2s11a
  • cf238a_firmware
  • cf238a
  • ce995a
  • cf068a
  • a2w78a_firmware
  • 2a71a
  • ce993a_firmware
  • cf235a_firmware
  • d7p71a
  • cc421a_firmware
  • ce504a_firmware
  • d7p70a_firmware
  • g1w41a
  • g1w47v
  • c2s11a_firmware
  • a2w79a
  • d3l08a_firmware
  • a2w77a
  • ce738a
  • e6b70a
  • b3g85a
  • l3u44a
  • ce708a_firmware
  • ce991a_firmware
  • l2717a
  • cf118a
  • e6b67a
  • cf081a_firmware
  • 2a70a
  • cf069a_firmware
  • f2a76a_firmware
  • g1w47a_firmware
  • a2w75a
  • e6b70a_firmware
  • cf116a
  • g1w40a
  • ce994a
  • b5l05a_firmware
  • a2w77a_firmware
  • b5l47a
  • cf069a
  • cz244a
  • ce738a_firmware
  • e6b67a_firmware
  • cf235a
  • l3u44a_firmware
  • b5l26a
  • cf117a
  • g1w47a
  • 2a69a_firmware
  • 2a68a
  • 2a71a_firmware
  • g1w46v_firmware
  • ce993a
  • cc420a_firmware
  • ce990a
  • a2w78a
  • cc523a_firmware
  • d3l09a_firmware
  • cc419a
  • cd645a_firmware
  • b5l25a
  • ce996a
  • 2a68a_firmware
  • b5l48a
  • d3l10a
  • g1w46v
  • cc522a_firmware
  • cf066a_firmware
  • ce709a
  • l2717a_firmware
  • cc420a
  • b5l25a_firmware
  • ce707a_firmware
  • g1w46a
  • b5l05a
  • f2a77a
  • ce707a
  • b3g85a_firmware
  • cd646a
  • cf118a_firmware
  • g1w46a_firmware
  • a2w75a_firmware
  • g1w41a_firmware
  • cc419a_firmware
  • cc523a
  • d3l09a
  • l3u43a
  • cf082a
  • ce708a
  • cd644a_firmware
  • ce989a_firmware
  • e6b69a
  • b5l04a
  • e6b68a
  • e6b71a_firmware
  • l3u42a_firmware
  • ce996a_firmware
  • ce992a
  • cf081a
  • ce992a_firmware
  • cf367a_firmware
  • e6b72a
  • cc522a
  • cc524a
  • b5l23a
  • b5l26a_firmware
  • e6b73a
  • j7x28a
  • b5l47a_firmware
  • cf117a_firmware
  • ce994a_firmware
  • cf067a
  • cc524a_firmware
  • j7x28a_firmware
  • d7p71a_firmware
  • cf236a
  • cf367a
  • g1w39a_firmware
  • ce503a
  • b5l46a_firmware
  • cc421a
  • c2s12a_firmware
  • ce709a_firmware
  • d3l10a_firmware
  • cz245a_firmware
  • l3u42a
  • cf236a_firmware
  • e6b71a
  • cf083a
  • b5l46a
  • ce503a_firmware
  • ce995a_firmware
  • e6b72a_firmware
  • b5l04a_firmware
  • b5l23a_firmware
  • e6b73a_firmware
  • l3u43a_firmware
  • d7p70a
  • cf082a_firmware
  • b5l07a
  • cf083a_firmware
  • cz245a
  • ce990a_firmware
  • a2w76a
  • b5l24a
  • ce504a
  • cf068a_firmware
  • cf116a_firmware
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')