CVE-2018-17211

{"id": "CVE-2018-17211", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2019-07-29T18:15:11.007", "references": [{"url": "https://github.com/DrunkenShells/Disclosures/tree/master/CVE-2018-17211-Unauthenticated_Information_Disclosure-PrinterOn", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://github.com/DrunkenShells/Disclosures/tree/master/CVE-2018-17211-Unauthenticated_Information_Disclosure-PrinterOn", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in PrinterOn Central Print Services (CPS) through 4.1.4. An unauthenticated attacker can view details about the printers associated with CPS via a crafted HTTP GET request."}, {"lang": "es", "value": "Se detect\u00f3 un problema en Central Print Services (CPS) de PrinterOn hasta versi\u00f3n 4.1.4. Un atacante no identificado puede visualizar detalles sobre las impresoras asociadas con CPS por medio de una petici\u00f3n HTTP GET especialmente dise\u00f1ada."}], "lastModified": "2024-11-21T03:54:06.287", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:printeron:central_print_services:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40ACB056-1898-49E5-8ADD-F36AF8827D95", "versionEndIncluding": "4.1.4"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}