{ "id": "CVE-2017-2747", "sourceIdentifier": "hp-security-alert@hp.com", "published": "2018-01-23T16:29:01.570", "lastModified": "2019-10-03T00:03:26.223", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "HP has identified a potential security vulnerability before IG_11_00_00.10 for DesignJet T790, T795, T1300, T2300, before MRY_04_05_00.5 for DesignJet T920, T930, T1500, T1530, T2500, T2530, before AENEAS_03_04_00.9 for DesignJet T3500, before NEXUS_01_12_00.11 for Latex 310, 330, 360, 370, before NEXUS_03_12_00.15 for Latex 315, 335, 365, 375, before STORM_00_05_01.6 for Latex 560, 570 and Latex 110 that may expose the credentials of the SMTP server configured to receive and process emails generated by the printers." }, { "lang": "es", "value": "HP ha identificado una vulnerabilidad potencial de seguridad en versiones anteriores a la IG_11_00_00.10 para DesignJet T790, T795, T1300 y T2300; en versiones anteriores a la MRY_04_05_00.5 para DesignJet T920, T930, T1500, T1530, T2500 y T2530; en versiones anteriores a la AENEAS_03_04_00.9 para DesignJet T3500; en versiones anteriores a la NEXUS_01_12_00.11 para Latex 310, 330, 360 y 370; en versiones anteriores a la NEXUS_03_12_00.15 para Latex 315, 335, 365 y 375; en versiones anteriores a la STORM_00_05_01.6 para Latex 560, 570 y Latex 110 que podr\u00eda exponer las credenciales del servidor SMTP configurado para recibir y procesar emails generados por las impresoras." } ], "metrics": { "cvssMetricV30": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.0", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH" }, "exploitabilityScore": 1.8, "impactScore": 5.9 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1 }, "baseSeverity": "LOW", "exploitabilityScore": 3.9, "impactScore": 2.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t790_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "ig_11_00_00.09", "matchCriteriaId": "4C00C928-3362-4177-BA49-75F2BFC8D16F" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t790:-:*:*:*:*:*:*:*", "matchCriteriaId": "00246A8F-7B86-403E-8AA8-1688F3C7C83F" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t795_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "ig_11_00_00.09", "matchCriteriaId": "C868619A-744F-4CE6-913F-27323C4BBF4A" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t795:-:*:*:*:*:*:*:*", "matchCriteriaId": "36355C24-96D8-4AD0-9E3D-4CEB774A4120" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t1300_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "ig_11_00_00.09", "matchCriteriaId": "4D96CF5A-30C1-439E-A134-8AEA547B449A" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t1300:-:*:*:*:*:*:*:*", "matchCriteriaId": "0D36A600-608E-4898-9424-1CB03018C9CD" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t2300_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "ig_11_00_00.09", "matchCriteriaId": "9DA063B8-B14C-475D-B610-95351536907B" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t2300:-:*:*:*:*:*:*:*", "matchCriteriaId": "2ED6D1E1-38E6-45F8-8921-1C97D3AB64A7" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t920_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "mry_04_05_00.4", "matchCriteriaId": "89B870D9-1CA0-4F0B-B6BA-5529953F0A7A" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t920:-:*:*:*:*:*:*:*", "matchCriteriaId": "E28AA042-BF48-4415-9747-B066602B4E6E" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t930_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "mry_04_05_00.4", "matchCriteriaId": "F36E3938-3931-472E-A49F-E1740C4B3A25" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t930:-:*:*:*:*:*:*:*", "matchCriteriaId": "10C11195-AB6D-43F3-8D11-325B29BB6ADE" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t1500_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "mry_04_05_00.4", "matchCriteriaId": "388CAACB-3295-4ECC-B1D4-BEB17A56AD82" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t1500:-:*:*:*:*:*:*:*", "matchCriteriaId": "0C541BDA-2DB6-4DC0-B554-8A7E8168E4E5" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t1530_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "mry_04_05_00.4", "matchCriteriaId": "A9FF5FBC-B140-4CF4-91A1-668D3F2BC99B" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t1530:-:*:*:*:*:*:*:*", "matchCriteriaId": "24305406-99AB-4DB9-99FF-C77F6E754B58" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t2500_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "mry_04_05_00.4", "matchCriteriaId": "3A444FBA-4CB3-4DDE-9E88-F22FF1F319F1" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t2500:-:*:*:*:*:*:*:*", "matchCriteriaId": "3DED692A-7C16-4874-A88B-9E90A62B9388" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t2530_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "mry_04_05_00.4", "matchCriteriaId": "CACD235F-0793-4E91-B604-BECBCE440AA3" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t2530:-:*:*:*:*:*:*:*", "matchCriteriaId": "B2377CEE-ED57-41F3-9B06-09C710DD509D" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:t3500_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "aeneas_03_04_00.8", "matchCriteriaId": "E2442D4B-F1FE-42CE-AA8D-74836CB4E810" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:t3500:-:*:*:*:*:*:*:*", "matchCriteriaId": "93193C66-82F3-4A33-94D6-698759FD6EB2" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:110_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "nexus_00_04_53.8", "matchCriteriaId": "860D25D9-91E5-42A3-91D8-CA08DD636CAA" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:110:-:*:*:*:*:*:*:*", "matchCriteriaId": "6E003DD3-0EF6-4CB4-BE56-115B11A62D48" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:310_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "nexus_01_12_00.10", "matchCriteriaId": "80AC891F-7AC5-422A-9C7F-04A673171F80" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:310:-:*:*:*:*:*:*:*", "matchCriteriaId": "D8825250-8BB9-4AF4-8240-6AA4930709ED" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:330_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "nexus_01_12_00.10", "matchCriteriaId": "C5838818-E65B-4C1D-A25B-4FB3A40A9D36" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:330:-:*:*:*:*:*:*:*", "matchCriteriaId": "E0A17B5C-FD32-403F-A897-366EBDF32855" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:360_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "nexus_01_12_00.10", "matchCriteriaId": "708B2110-6426-4407-A2AD-722655D26BBA" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:360:-:*:*:*:*:*:*:*", "matchCriteriaId": "B9795B5A-0920-44AA-A12C-07A90523739F" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:370_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "nexus_01_12_00.10", "matchCriteriaId": "B5A3D791-6599-4BC0-A13B-2896D1605CB9" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:370:-:*:*:*:*:*:*:*", "matchCriteriaId": "5478829C-2F62-4D03-9CC8-F9A7209866A5" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:315_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "nexus_03_12_00.14", "matchCriteriaId": "7FD23F58-FFA9-4FB8-9963-D6875B4525C8" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:315:-:*:*:*:*:*:*:*", "matchCriteriaId": "869E4D36-FCD3-46DC-B04D-7656393A2015" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:335_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "nexus_03_12_00.14", "matchCriteriaId": "01C532BA-6862-40C6-BB74-E6AED7F039AA" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:335:-:*:*:*:*:*:*:*", "matchCriteriaId": "B5463ECB-F269-4921-9300-A6828FBF7BF8" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:365_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "nexus_03_12_00.14", "matchCriteriaId": "9746DD9D-C6F8-43D5-BCE0-3912FD09AB63" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:365:-:*:*:*:*:*:*:*", "matchCriteriaId": "B00DA81E-B41B-41CE-B2CA-BFEB4F4C1D14" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:375_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "nexus_03_12_00.14", "matchCriteriaId": "6A2867DD-B36A-4EA4-8594-48AFA62AC48E" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:375:-:*:*:*:*:*:*:*", "matchCriteriaId": "AD53B891-6000-4D9C-A34C-5A404D5BA941" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:560_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "storm_00_05_01.5", "matchCriteriaId": "737EBBB0-1CBF-4057-96C9-F8C94CEE7C2E" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:560:-:*:*:*:*:*:*:*", "matchCriteriaId": "FA189B68-34A3-46E8-A4D2-844B9024A1D2" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:570_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "storm_00_05_01.5", "matchCriteriaId": "40D4AA72-6235-4CC0-AFB9-1F388A249620" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:570:-:*:*:*:*:*:*:*", "matchCriteriaId": "2B3F2909-E2C4-45E9-A5DD-D7ACFE1AF621" } ] } ] } ], "references": [ { "url": "https://support.hp.com/us-en/document/c05624457", "source": "hp-security-alert@hp.com", "tags": [ "Vendor Advisory" ] } ] }