CVE-2017-2741

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2017-2741
A potential security vulnerability has been identified with HP PageWide Printers, HP OfficeJet Pro Printers, with firmware before 1708D. This vulnerability could potentially be exploited to execute arbitrary code.

9.8 /10

CVSS v3 : CRITICAL

V3 Legend

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
https://support.hp.com/us-en/document/c05462914 Vendor Advisory
https://www.exploit-db.com/exploits/42176/ Third Party Advisory VDB Entry
https://www.exploit-db.com/exploits/45273/
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:hp:j9v82a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9v82a:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:hp:j9v82b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9v82b:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:hp:j9v82c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9v82c:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:hp:j9v82d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9v82d:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:hp:j6u55a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j6u55a:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:hp:j6u55b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j6u55b:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:hp:j6u55c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j6u55c:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:hp:j6u55d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j6u55d:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:hp:k9z76a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:k9z76a:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:hp:k9z76d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:k9z76d:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:hp:d3q17a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q17a:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:hp:d3q17c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q17c:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:hp:d3q17d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q17d:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:hp:d3q21a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q21a:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:hp:d3q21c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q21c:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:hp:d3q21d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q21d:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:hp:d3q20a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q20a:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:hp:d3q20b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q20b:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:hp:d3q20c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q20c:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:hp:d3q20d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q20d:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:hp:d3q16a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q16a:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:hp:d3q16b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q16b:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:hp:d3q16c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q16c:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:hp:d3q16d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q16d:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:hp:d3q19a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q19a:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:hp:d3q19d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q19d:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:hp:d3q15a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q15a:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:hp:d3q15b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q15b:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:hp:d3q15d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d3q15d:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:hp:j9v80a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9v80a:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:hp:j9v80b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9v80b:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:hp:j6u57b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j6u57b:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:hp:d9l20a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d9l20a:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:hp:d9l21a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d9l21a:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:hp:d9l63a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d9l63a:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:hp:d9l64a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:d9l64a:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND
cpe:2.3:o:hp:t0g70a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:t0g70a:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND
cpe:2.3:o:hp:j3p68a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j3p68a:-:*:*:*:*:*:*:*
History

No history.

Information

Published : 2018-01-23 16:29

Updated : 2024-02-28 16:25

NVD link : CVE-2017-2741

Mitre link : CVE-2017-2741

CVE.ORG link : CVE-2017-2741

JSON object : View

Products Affected

hp

  • j6u55a_firmware
  • d9l63a
  • j9v80b
  • d3q21d
  • d3q15a
  • d3q16c_firmware
  • d3q19d_firmware
  • k9z76d_firmware
  • d3q16b_firmware
  • d3q15d
  • j9v82d
  • j6u55b_firmware
  • d3q17c_firmware
  • d3q20a
  • d9l63a_firmware
  • d3q20c
  • d9l21a
  • d3q20d
  • j3p68a_firmware
  • d3q21d_firmware
  • d3q17a
  • d3q16a
  • d3q17a_firmware
  • j9v80b_firmware
  • d3q20b
  • j6u55c_firmware
  • j6u55d
  • d3q15b
  • t0g70a
  • j6u57b_firmware
  • j9v82b_firmware
  • j9v80a_firmware
  • d3q20b_firmware
  • k9z76a_firmware
  • d9l64a_firmware
  • d3q17d
  • d9l21a_firmware
  • d3q16b
  • j9v82c_firmware
  • j3p68a
  • j9v80a
  • d3q20a_firmware
  • d3q20c_firmware
  • d3q17d_firmware
  • d9l20a
  • d3q21a
  • j6u55d_firmware
  • d3q19d
  • d3q15b_firmware
  • d3q16a_firmware
  • d3q15a_firmware
  • j9v82b
  • j9v82c
  • k9z76d
  • d3q16c
  • d3q19a
  • t0g70a_firmware
  • j6u57b
  • d3q15d_firmware
  • d9l20a_firmware
  • j9v82d_firmware
  • d3q21c_firmware
  • d3q21a_firmware
  • d3q16d
  • d3q19a_firmware
  • d3q20d_firmware
  • d3q21c
  • d3q16d_firmware
  • k9z76a
  • j9v82a_firmware
  • j9v82a
  • d3q17c
  • d9l64a
  • j6u55a
  • j6u55c
  • j6u55b
CWE
NVD-CWE-noinfo