CVE-2011-0279

Published Mar 7, 2011

Last updated 7 years ago

Overview

Description: HP Multifunction Peripheral (MFP) Digital Sending Software (DSS) 4.91.00 does not properly configure authentication settings of managed devices within device templates, which allows attackers to access these devices via actions that were intended to require authentication.
Source: hp-security-alert@hp.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-287

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hp:multifunction_peripheral_digital_sending_software:4.91.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B00FCAC-5774-4080-8487-9266647714A2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References