CVE-2015-2118

Unspecified vulnerability in the Secure Pull Print and Security Pull Print components in HP Access Control (AC) Software 12.x through 14.x before 14.1.2 allows remote authenticated users to obtain sensitive information via unknown vectors.

CVSS v2.0 4.0 MEDIUM

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04649315	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:hp:access_control:12.0:::::::*
	cpe:2.3:a:hp:access_control:12.1:::::::*
	cpe:2.3:a:hp:access_control:12.2:::::::*
	cpe:2.3:a:hp:access_control:12.3:::::::*
	cpe:2.3:a:hp:access_control:13.0:::::::*
	cpe:2.3:a:hp:access_control:14.0:::::::*
	cpe:2.3:a:hp:access_control:14.1:::::::*

History

No history.

Information

Published : 2015-05-25 17:59

Updated : 2024-02-28 15:21

NVD link : CVE-2015-2118

Mitre link : CVE-2015-2118

CVE.ORG link : CVE-2015-2118

JSON object : View

Products Affected

hp

access_control

CWE

NVD-CWE-noinfo

{"id": "CVE-2015-2118", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": true, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-05-25T17:59:01.310", "references": [{"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04649315", "tags": ["Patch", "Vendor Advisory"], "source": "hp-security-alert@hp.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Secure Pull Print and Security Pull Print components in HP Access Control (AC) Software 12.x through 14.x before 14.1.2 allows remote authenticated users to obtain sensitive information via unknown vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en los componentes Secure Pull Print y Security Pull Print en Software HP Access Control (AC) Software 12.x hasta 14.x anterior a 14.1.2 permite a usuarios remotos autenticados obtener informaci\u00f3n sensible a trav\u00e9s de vectores desconocidos."}], "lastModified": "2019-10-09T23:13:29.173", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hp:access_control:12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A77D27F-80B0-42EA-BF79-3BC90F405618"}, {"criteria": "cpe:2.3:a:hp:access_control:12.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8749D08D-28DF-4DDA-923C-7C1CFFAA36E6"}, {"criteria": "cpe:2.3:a:hp:access_control:12.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E8D3A04-BE2F-4182-BD0E-CFC10D8EB8D3"}, {"criteria": "cpe:2.3:a:hp:access_control:12.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83CCAFBE-3418-4A04-AC2E-954369164742"}, {"criteria": "cpe:2.3:a:hp:access_control:13.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ADC2D965-577E-4C1C-B5F8-F5B2E29F720C"}, {"criteria": "cpe:2.3:a:hp:access_control:14.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0F46403-D97D-4D03-B4A5-17B90A2D1104"}, {"criteria": "cpe:2.3:a:hp:access_control:14.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FD1A79D-3DC3-451F-A0D9-AC0CB3B7CEF6"}], "operator": "OR"}]}], "sourceIdentifier": "hp-security-alert@hp.com"}