CVE-2009-0941

Name: CVE-2009-0941
Creator: NVD / NIST
Published: 2009-03-18T21:00:00.39+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 3.02%

Last modified Jun 16, 2026

CVE-2009-0941 is a vulnerability of currently unknown severity. The HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders has no management password by default, which makes it easier for remote attackers to obtain access.. EPSS estimates a 3.02% chance of exploitation in the next 30 days.

Description

The HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders has no management password by default, which makes it easier for remote attackers to obtain access.

Metrics

EPSS Probability

3.02%

85.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-264

Affected Software

Vendor	Product	Versions
Hp	8100c Digital Sender	All versions
Hp	9100c Digital Sender	All versions
Hp	9200c Digital Sender	All versions
Hp	9250c Digital Sender	All versions
Hp	Color Laserjet	All versions
Hp	Color Laserjet 1500	All versions
Hp	Color Laserjet 2500	All versions
Hp	Color Laserjet 2500l	All versions
Hp	Color Laserjet 2500lse	All versions
Hp	Color Laserjet 2500n	All versions
Hp	Color Laserjet 2500tn	All versions
Hp	Color Laserjet 2605dtn	All versions
Hp	Color Laserjet 4370mfp	20081211_46.211.2
Hp	Color Laserjet 4600	All versions
Hp	Color Laserjet 4600dn	All versions
Hp	Color Laserjet 4600dtn	All versions
Hp	Color Laserjet 4600hdn	All versions
Hp	Color Laserjet 4650	All versions
Hp	Color Laserjet 4700	All versions
Hp	Color Laserjet 4730 Mfp	All versions
Hp	Color Laserjet 5500	All versions
Hp	Color Laserjet 5550	All versions
Hp	Color Laserjet 8500	All versions
Hp	Color Laserjet 8550	All versions
Hp	Color Laserjet 9500	All versions
Hp	Color Laserjet 9500 Mfp	All versions
Hp	Color Laserjet 9500mfp	20070719_05.011.2
Hp	Color Mfp Cm8050	All versions
Hp	Color Mfp Cm8060	All versions
Hp	Digital Senders	All versions
Hp	Edgeline Printers	All versions
Hp	Laserjet 1000	All versions
Hp	Laserjet 1005	All versions
Hp	Laserjet 1010	All versions
Hp	Laserjet 1012	All versions
Hp	Laserjet 1015	All versions
Hp	Laserjet 1018	All versions
Hp	Laserjet 1018s	All versions
Hp	Laserjet 1020	All versions
Hp	Laserjet 1020 Plus	All versions
Hp	Laserjet 1022	All versions
Hp	Laserjet 1022n	All versions
Hp	Laserjet 1022nw	All versions
Hp	Laserjet 1100	All versions
Hp	Laserjet 1150	All versions
Hp	Laserjet 1160	All versions
Hp	Laserjet 1200	All versions
Hp	Laserjet 1300	All versions
Hp	Laserjet 1320	All versions
Hp	Laserjet 2	All versions

Showing 50 of 164 affected configurations. See NVD for the full list.

References

Timeline

Published: Mar 18, 2009
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2009-0941?

The HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders has no management password by default, which makes it easier for remote attackers to obtain access.

How severe is CVE-2009-0941?

Severity scoring for CVE-2009-0941 is pending analysis. The EPSS model estimates a 3.02% probability of exploitation in the next 30 days.

How do I fix CVE-2009-0941?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2009-0941?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST