CVE-2021-3965

Name: CVE-2021-3965
Creator: NVD / NIST
Published: 2022-01-14T20:15:11.637+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.5/10EPSS 5.24%

Last modified Jun 17, 2026

CVE-2021-3965 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. Certain HP DesignJet products may be vulnerable to unauthenticated HTTP requests which allow viewing and downloading of print job previews.. EPSS estimates a 5.24% chance of exploitation in the next 30 days.

Description

Certain HP DesignJet products may be vulnerable to unauthenticated HTTP requests which allow viewing and downloading of print job previews.

Metrics

CVSS 3.1

7.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS Probability

5.24%

91.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-639

Affected Software

Vendor	Product	Versions
Hp	Designjet T920 Cr355a Firmware	mry_07_07_04.1
Hp	Designjet T920 Cr355b Firmware	mry_07_07_04.1
Hp	Designjet T920 Cr354a Firmware	mry_07_07_04.1
Hp	Designjet T930 L2y22a Firmware	mry_07_07_04.1
Hp	Designjet T930 L2y22b Firmware	mry_07_07_04.1
Hp	Designjet T930 L2y21a Firmware	mry_07_07_04.1
Hp	Designjet T930 L2y21b Firmware	mry_07_07_04.1
Hp	Designjet T1530 L2y24a Firmware	mry_07_07_04.1
Hp	Designjet T1530 L2y24b Firmware	mry_07_07_04.1
Hp	Designjet T1530 L2y23a Firmware	mry_07_07_04.1
Hp	Designjet T2530 L2y25a Firmware	mry_07_07_04.1
Hp	Designjet T2530 L2y26a Firmware	mry_07_07_04.1
Hp	Designjet T2530 L2y26b Firmware	mry_07_07_04.1
Hp	Designjet T3500 B9e24a Firmware	aeneas_04_09_06.1
Hp	Designjet T3500 B9e24b Firmware	aeneas_04_09_06.1
Hp	Designjet T3500 B9e25a Firmware	aeneas_04_09_06.1
Hp	Designjet Z6800 F2s72a Firmware	ptr8_03_07_06.1
Hp	Designjet Z6800 F2s72ar Firmware	ptr8_03_07_06.1
Hp	Designjet Z6800 F2s72b Firmware	ptr8_03_07_06.1
Hp	Designjet Z6600 F2s71a Firmware	ptr6_03_07_06.1
Hp	Designjet Z6600 F2s71ar Firmware	ptr6_03_07_06.1
Hp	Designjet Z6810 2qu12a Firmware	px8_06_05_02.1
Hp	Designjet Z6810 2qu12b Firmware	px8_06_05_02.1
Hp	Designjet Z6810 2qu14a Firmware	px8_06_05_02.1
Hp	Designjet Z6810 2qu14b Firmware	px8_06_05_02.1
Hp	Designjet Z6610 2qu13b Firmware	px6_06_05_02.1
Hp	Designjet Z6610 2qu13a Firmware	px6_06_05_02.1

References

https://support.hp.com/us-en/document/ish_5268198-5268230-16Vendor Advisory
https://support.hp.com/us-en/document/ish_5268198-5268230-16Vendor Advisory

Timeline

Published: Jan 14, 2022
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2021-3965?

Certain HP DesignJet products may be vulnerable to unauthenticated HTTP requests which allow viewing and downloading of print job previews.

How severe is CVE-2021-3965?

CVE-2021-3965 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 5.24% probability of exploitation in the next 30 days.

How do I fix CVE-2021-3965?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-3965?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST