HP » Laserjet P4015 : Security Vulnerabilities, CVEs, CVSS score >= 6
The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, 4xxx, 5550, 9500, CMxxxx, CPxxxx, and Enterprise CPxxxx; Digital Sender 9200c and 9250c; LaserJet 4xxx, 5200, 90xx, Mxxxx, and Pxxxx; and LaserJet Enterprise 500 color M551, 600, M4555 MFP, and P3015 enables the Remote Firmware Update (RFU) setting, which allows remote attackers to execute arbitrary code by using a session on TCP port 9100 to upload a crafted firmware update.
Max CVSS
10.0
EPSS Score
27.25%
Published
2011-12-01
Updated
2012-09-18
The HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders has no management password by default, which makes it easier for remote attackers to obtain access.
Max CVSS
7.6
EPSS Score
0.69%
Published
2009-03-18
Updated
2018-10-10
2 vulnerabilities found