{ "id": "CVE-2021-3965", "sourceIdentifier": "hp-security-alert@hp.com", "published": "2022-01-14T20:15:11.637", "lastModified": "2022-01-24T19:38:30.547", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "Certain HP DesignJet products may be vulnerable to unauthenticated HTTP requests which allow viewing and downloading of print job previews." }, { "lang": "es", "value": "Algunos productos HP DesignJet pueden ser vulnerables a peticiones HTTP no autenticadas que permiten visualizar y descargar vistas previas de trabajos de impresi\u00f3n" } ], "metrics": { "cvssMetricV31": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH" }, "exploitabilityScore": 3.9, "impactScore": 3.6 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0 }, "baseSeverity": "MEDIUM", "exploitabilityScore": 10.0, "impactScore": 2.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-639" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t920_cr355a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "8073BF74-52AD-478A-B479-EF33D1114690" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t920_cr355a:-:*:*:*:*:*:*:*", "matchCriteriaId": "2E5286FB-A7A8-4412-A5C5-1C98217763B2" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t920_cr355b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "0F44A9CC-81FB-4C13-9896-DD09E28A064D" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t920_cr355b:-:*:*:*:*:*:*:*", "matchCriteriaId": "12207CAC-688E-445B-9DE2-F88A4FA2E0BA" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t920_cr354a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "5A8AC076-C10D-4FBF-9B0E-C401E87BDA63" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t920_cr354a:-:*:*:*:*:*:*:*", "matchCriteriaId": "EDC53AC8-800E-43AD-9F18-EBB254CFE41B" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t930_l2y22a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "2519F63A-0AA2-42B7-885F-F963B5FAAD0A" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t930_l2y22a:-:*:*:*:*:*:*:*", "matchCriteriaId": "8565532B-83EE-4431-873E-A35ACEFF007D" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t930_l2y22b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "83068F0E-471B-4590-BBCD-22BDD36AF1B9" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t930_l2y22b:-:*:*:*:*:*:*:*", "matchCriteriaId": "958C3B99-7BCF-4193-A943-C95AAD4E27E5" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t930_l2y21a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "6EB41823-72F5-4B1D-9559-AD5A07865D70" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t930_l2y21a:-:*:*:*:*:*:*:*", "matchCriteriaId": "1CB59679-BD4D-4238-BAC5-943C0C7706A8" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t930_l2y21b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "91B9B52E-87C0-478A-9BB4-14E8C3AA5034" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t930_l2y21b:-:*:*:*:*:*:*:*", "matchCriteriaId": "F56143DB-6F62-45A4-BE6C-B589D66346E7" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t1530_l2y24a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "B8BD1F62-52BF-4F8D-880C-1478F17C9ABE" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t1530_l2y24a:-:*:*:*:*:*:*:*", "matchCriteriaId": "EA23C8A1-DB11-419B-A1A4-369CB5C34DBE" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t1530_l2y24b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "1E56C51C-2C19-46A9-A063-B3E0D0546EEB" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t1530_l2y24b:-:*:*:*:*:*:*:*", "matchCriteriaId": "B536A6C6-CFDC-4402-AB8E-BFBC8ADD9636" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t1530_l2y23a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "951B2AC9-D68E-4A3B-BC2E-61E3D220F128" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t1530_l2y23a:-:*:*:*:*:*:*:*", "matchCriteriaId": "1CF4D973-2265-4757-A26A-8E147A1D9F52" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t2530_l2y25a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "B47AEC2E-8FCC-45DA-BA56-D4556E113FB0" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t2530_l2y25a:-:*:*:*:*:*:*:*", "matchCriteriaId": "9937AABE-74EA-402B-BCC7-319B7EB226A6" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t2530_l2y26a_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "2CA36028-79D3-4A69-A1A3-F7FA3F554836" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t2530_l2y26a:-:*:*:*:*:*:*:*", "matchCriteriaId": "BC774DB4-80FC-40D2-BCA1-2FB7295E1BE1" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t2530_l2y26b_firmware:mry_07_07_04.1:*:*:*:*:*:*:*", "matchCriteriaId": "1E6FE0C0-415F-42E2-AA15-848DB1E9D626" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t2530_l2y26b:-:*:*:*:*:*:*:*", "matchCriteriaId": "C7B55E75-F45D-4700-A940-A2B6A06DFC1F" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t3500_b9e24a_firmware:aeneas_04_09_06.1:*:*:*:*:*:*:*", "matchCriteriaId": "F9B80DC7-2741-4B98-93C8-40BC323F62C8" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t3500_b9e24a:-:*:*:*:*:*:*:*", "matchCriteriaId": "AF877049-EBC8-4F17-8100-602FDAF0D53E" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t3500_b9e24b_firmware:aeneas_04_09_06.1:*:*:*:*:*:*:*", "matchCriteriaId": "8D49B757-2D20-446E-AE89-3F0EAB56E660" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t3500_b9e24b:-:*:*:*:*:*:*:*", "matchCriteriaId": "FB999352-9C9A-412C-BAC3-3FFC511E7ADE" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_t3500_b9e25a_firmware:aeneas_04_09_06.1:*:*:*:*:*:*:*", "matchCriteriaId": "AA339456-4EB3-48C6-B2FF-1522C9D4F470" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_t3500_b9e25a:-:*:*:*:*:*:*:*", "matchCriteriaId": "B11C80A2-F4E8-440C-8959-297EA80195CE" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6800_f2s72a_firmware:ptr8_03_07_06.1:*:*:*:*:*:*:*", "matchCriteriaId": "A5583242-2CD1-4F1B-A12F-A3EBDA85582D" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6800_f2s72a:-:*:*:*:*:*:*:*", "matchCriteriaId": "1D9C6A55-2307-4307-8AAB-A6E00A49BC32" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6800_f2s72ar_firmware:ptr8_03_07_06.1:*:*:*:*:*:*:*", "matchCriteriaId": "0C11C6CB-6300-4EF8-8C7B-E7703BAEA092" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6800_f2s72ar:-:*:*:*:*:*:*:*", "matchCriteriaId": "56410F40-FEA1-4612-ABB6-2540E2E57F92" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6800_f2s72b_firmware:ptr8_03_07_06.1:*:*:*:*:*:*:*", "matchCriteriaId": "A6A4C172-AA85-4FA1-AD84-E126E584405E" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6800_f2s72b:-:*:*:*:*:*:*:*", "matchCriteriaId": "2511B745-D712-486C-85EE-666D645989FF" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6600_f2s71a_firmware:ptr6_03_07_06.1:*:*:*:*:*:*:*", "matchCriteriaId": "B21E4403-B75F-48AE-91E0-DD9912D87999" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6600_f2s71a:-:*:*:*:*:*:*:*", "matchCriteriaId": "A232850B-E014-421B-B2A1-1990AC275A0A" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6600_f2s71ar_firmware:ptr6_03_07_06.1:*:*:*:*:*:*:*", "matchCriteriaId": "FDAFCC20-610C-477E-9706-F3B8A286102A" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6600_f2s71ar:-:*:*:*:*:*:*:*", "matchCriteriaId": "1836E2B7-BEEA-4C42-81DD-67B171F738C7" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6810_2qu12a_firmware:px8_06_05_02.1:*:*:*:*:*:*:*", "matchCriteriaId": "59414A71-2FC1-407D-8447-6F7075E572CF" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6810_2qu12a:-:*:*:*:*:*:*:*", "matchCriteriaId": "FB3D8C9C-EC5C-47AA-B1DB-7ED4ED4D2CC5" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6810_2qu12b_firmware:px8_06_05_02.1:*:*:*:*:*:*:*", "matchCriteriaId": "D25F9980-6304-46B3-A02D-5D22C277A29C" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6810_2qu12b:-:*:*:*:*:*:*:*", "matchCriteriaId": "645F267C-7F97-41CF-B7DF-76E6DACE9B2D" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6810_2qu14a_firmware:px8_06_05_02.1:*:*:*:*:*:*:*", "matchCriteriaId": "1C7432C4-67AD-4B73-AAFD-8850F9908863" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6810_2qu14a:-:*:*:*:*:*:*:*", "matchCriteriaId": "D3F77868-0E34-4F8B-9388-E591A6B800CA" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6810_2qu14b_firmware:px8_06_05_02.1:*:*:*:*:*:*:*", "matchCriteriaId": "88101F10-1AED-4C1A-94D6-21E74D440D62" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6810_2qu14b:-:*:*:*:*:*:*:*", "matchCriteriaId": "4B10A68C-173E-4BEF-8C1F-C377F018597F" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6610_2qu13b_firmware:px6_06_05_02.1:*:*:*:*:*:*:*", "matchCriteriaId": "E015E131-828A-4DF3-99C9-A1E1B1C49DD2" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6610_2qu13b:-:*:*:*:*:*:*:*", "matchCriteriaId": "BE8AFE92-CB14-4A54-8E0C-A2356597D288" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:hp:designjet_z6610_2qu13a_firmware:px6_06_05_02.1:*:*:*:*:*:*:*", "matchCriteriaId": "337CD957-8DE2-4CB7-A5F2-DFBAD26D83C0" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:hp:designjet_z6610_2qu13a:-:*:*:*:*:*:*:*", "matchCriteriaId": "2A07961A-8410-4A63-A259-FCCB0B07835C" } ] } ] } ], "references": [ { "url": "https://support.hp.com/us-en/document/ish_5268198-5268230-16", "source": "hp-security-alert@hp.com", "tags": [ "Vendor Advisory" ] } ] }