CVE-2017-2747

{"id": "CVE-2017-2747", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2018-01-23T16:29:01.570", "references": [{"url": "https://support.hp.com/us-en/document/c05624457", "tags": ["Vendor Advisory"], "source": "hp-security-alert@hp.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "HP has identified a potential security vulnerability before IG_11_00_00.10 for DesignJet T790, T795, T1300, T2300, before MRY_04_05_00.5 for DesignJet T920, T930, T1500, T1530, T2500, T2530, before AENEAS_03_04_00.9 for DesignJet T3500, before NEXUS_01_12_00.11 for Latex 310, 330, 360, 370, before NEXUS_03_12_00.15 for Latex 315, 335, 365, 375, before STORM_00_05_01.6 for Latex 560, 570 and Latex 110 that may expose the credentials of the SMTP server configured to receive and process emails generated by the printers."}, {"lang": "es", "value": "HP ha identificado una vulnerabilidad potencial de seguridad en versiones anteriores a la IG_11_00_00.10 para DesignJet T790, T795, T1300 y T2300; en versiones anteriores a la MRY_04_05_00.5 para DesignJet T920, T930, T1500, T1530, T2500 y T2530; en versiones anteriores a la AENEAS_03_04_00.9 para DesignJet T3500; en versiones anteriores a la NEXUS_01_12_00.11 para Latex 310, 330, 360 y 370; en versiones anteriores a la NEXUS_03_12_00.15 para Latex 315, 335, 365 y 375; en versiones anteriores a la STORM_00_05_01.6 para Latex 560, 570 y Latex 110 que podr\u00eda exponer las credenciales del servidor SMTP configurado para recibir y procesar emails generados por las impresoras."}], "lastModified": "2019-10-03T00:03:26.223", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t790_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C00C928-3362-4177-BA49-75F2BFC8D16F", "versionEndIncluding": "ig_11_00_00.09"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t790:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "00246A8F-7B86-403E-8AA8-1688F3C7C83F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t795_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C868619A-744F-4CE6-913F-27323C4BBF4A", "versionEndIncluding": "ig_11_00_00.09"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t795:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "36355C24-96D8-4AD0-9E3D-4CEB774A4120"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t1300_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D96CF5A-30C1-439E-A134-8AEA547B449A", "versionEndIncluding": "ig_11_00_00.09"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t1300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0D36A600-608E-4898-9424-1CB03018C9CD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t2300_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DA063B8-B14C-475D-B610-95351536907B", "versionEndIncluding": "ig_11_00_00.09"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t2300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2ED6D1E1-38E6-45F8-8921-1C97D3AB64A7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t920_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89B870D9-1CA0-4F0B-B6BA-5529953F0A7A", "versionEndIncluding": "mry_04_05_00.4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t920:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E28AA042-BF48-4415-9747-B066602B4E6E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t930_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F36E3938-3931-472E-A49F-E1740C4B3A25", "versionEndIncluding": "mry_04_05_00.4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t930:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "10C11195-AB6D-43F3-8D11-325B29BB6ADE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t1500_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "388CAACB-3295-4ECC-B1D4-BEB17A56AD82", "versionEndIncluding": "mry_04_05_00.4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t1500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0C541BDA-2DB6-4DC0-B554-8A7E8168E4E5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t1530_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9FF5FBC-B140-4CF4-91A1-668D3F2BC99B", "versionEndIncluding": "mry_04_05_00.4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t1530:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "24305406-99AB-4DB9-99FF-C77F6E754B58"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t2500_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A444FBA-4CB3-4DDE-9E88-F22FF1F319F1", "versionEndIncluding": "mry_04_05_00.4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t2500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3DED692A-7C16-4874-A88B-9E90A62B9388"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t2530_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CACD235F-0793-4E91-B604-BECBCE440AA3", "versionEndIncluding": "mry_04_05_00.4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t2530:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B2377CEE-ED57-41F3-9B06-09C710DD509D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:t3500_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2442D4B-F1FE-42CE-AA8D-74836CB4E810", "versionEndIncluding": "aeneas_03_04_00.8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:t3500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "93193C66-82F3-4A33-94D6-698759FD6EB2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:110_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "860D25D9-91E5-42A3-91D8-CA08DD636CAA", "versionEndIncluding": "nexus_00_04_53.8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6E003DD3-0EF6-4CB4-BE56-115B11A62D48"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:310_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80AC891F-7AC5-422A-9C7F-04A673171F80", "versionEndIncluding": "nexus_01_12_00.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:310:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D8825250-8BB9-4AF4-8240-6AA4930709ED"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:330_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5838818-E65B-4C1D-A25B-4FB3A40A9D36", "versionEndIncluding": "nexus_01_12_00.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:330:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E0A17B5C-FD32-403F-A897-366EBDF32855"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:360_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "708B2110-6426-4407-A2AD-722655D26BBA", "versionEndIncluding": "nexus_01_12_00.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:360:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B9795B5A-0920-44AA-A12C-07A90523739F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:370_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5A3D791-6599-4BC0-A13B-2896D1605CB9", "versionEndIncluding": "nexus_01_12_00.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:370:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5478829C-2F62-4D03-9CC8-F9A7209866A5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:315_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FD23F58-FFA9-4FB8-9963-D6875B4525C8", "versionEndIncluding": "nexus_03_12_00.14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:315:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "869E4D36-FCD3-46DC-B04D-7656393A2015"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:335_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01C532BA-6862-40C6-BB74-E6AED7F039AA", "versionEndIncluding": "nexus_03_12_00.14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:335:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B5463ECB-F269-4921-9300-A6828FBF7BF8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:365_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9746DD9D-C6F8-43D5-BCE0-3912FD09AB63", "versionEndIncluding": "nexus_03_12_00.14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:365:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B00DA81E-B41B-41CE-B2CA-BFEB4F4C1D14"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:375_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6A2867DD-B36A-4EA4-8594-48AFA62AC48E", "versionEndIncluding": "nexus_03_12_00.14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:375:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AD53B891-6000-4D9C-A34C-5A404D5BA941"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:560_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "737EBBB0-1CBF-4057-96C9-F8C94CEE7C2E", "versionEndIncluding": "storm_00_05_01.5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:560:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FA189B68-34A3-46E8-A4D2-844B9024A1D2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:570_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40D4AA72-6235-4CC0-AFB9-1F388A249620", "versionEndIncluding": "storm_00_05_01.5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hp:570:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2B3F2909-E2C4-45E9-A5DD-D7ACFE1AF621"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "hp-security-alert@hp.com"}