Strix
26.1K

CVE-2017-2743

UnknownEPSS 1.27%

Last modified

CVE-2017-2743 is a vulnerability of currently unknown severity. HP has identified a potential security vulnerability with HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS before 2308214_000901, 2308214_000900, and other firmware versions. The vulnerability could be exploited to perform a cross site scripting (XSS) attack.. EPSS estimates a 1.27% chance of exploitation in the next 30 days.

Description

HP has identified a potential security vulnerability with HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS before 2308214_000901, 2308214_000900, and other firmware versions. The vulnerability could be exploited to perform a cross site scripting (XSS) attack.

Metrics

EPSS Probability
1.27%

66.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
HpCc419a Firmware< 2308214_000901
HpCc420a Firmware< 2308214_000901
HpCc421a Firmware< 2308214_000901
HpCe709a Firmware< 2308214_000900
HpCe708a Firmware< 2308214_000900
HpCe707a Firmware< 2308214_000900
HpCe503a Firmware< 2308214_000904
HpCe504a Firmware< 2308214_000904
HpCe738a Firmware< 2308214_000904
HpCe989a Firmware< 2308214_000926
HpCe990a Firmware< 2308214_000926
HpCe991a Firmware< 2308214_000926
HpCe992a Firmware< 2308214_000926
HpCe993a Firmware< 2308214_000926
HpCe994a Firmware< 2308214_000926
HpCe995a Firmware< 2308214_000926
HpCe996a Firmware< 2308214_000926
HpCf081a Firmware< 2308214_000927
HpCf082a Firmware< 2308214_000927
HpCf083a Firmware< 2308214_000927
HpL2717a Firmware< 2308214_000903
HpCd644a Firmware< 2308214_000925
HpCd645a Firmware< 2308214_000925
HpCf116a Firmware< 2308214_000913
HpCf117a Firmware< 2308214_000913
HpCc522a Firmware< 2308214_000932
HpCc523a Firmware< 2308214_000932
HpCc524a Firmware< 2308214_000932
HpCf235a Firmware< 2308214_000922
HpCf236a Firmware< 2308214_000922
HpCf238a Firmware< 2308214_000922
HpCd646a Firmware< 2308214_000925
HpCf118a Firmware< 2308214_000913
HpCf066a Firmware< 2308214_000921
HpCf067a Firmware< 2308214_000921
HpCf068a Firmware< 2308214_000921
HpCf069a Firmware< 2308214_000921
HpD3l08a Firmware< 2308214_000931
HpD3l09a Firmware< 2308214_000931
HpD3l10a Firmware< 2308214_000931
HpA2w77a Firmware< 2308214_000930
HpA2w78a Firmware< 2308214_000930
HpA2w79a Firmware< 2308214_000930
HpA2w76a Firmware< 2308214_000928
HpA2w75a Firmware< 2308214_000928
HpD7p70a Firmware< 2308214_000928
HpD7p71a Firmware< 2308214_000928
HpCf367a Firmware< 2308214_000916
HpCz244a Firmware< 2308214_000920
HpCz245a Firmware< 2308214_000920

Showing 50 of 88 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2017-2743?
HP has identified a potential security vulnerability with HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS before 2308214_000901, 2308214_000900, and other firmware versions. The vulnerability could be exploited to perform a cross site scripting (XSS) attack.
How severe is CVE-2017-2743?
Severity scoring for CVE-2017-2743 is pending analysis. The EPSS model estimates a 1.27% probability of exploitation in the next 30 days.
How do I fix CVE-2017-2743?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-2743?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST