CVE-2009-0940

Multiple cross-site request forgery (CSRF) vulnerabilities in the HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders allow remote attackers to hijack the intranet connectivity of arbitrary users for requests that (1) print documents via unknown vectors, (2) modify the network configuration via a NetIPChange request to hp/device/config_result_YesNo.html/config, or (3) change the password via the Password and ConfirmPassword parameters to hp/device/set_config_password.html/config.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.1 UNKNOWN
NETWORK
HIGH
AV:N/AC:H/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 73%
VendorProductVersion
hp8100c_digital_sender
-
hp9100c_digital_sender
-
hp9200c_digital_sender
-
hp9250c_digital_sender
-
hpcolor_laserjet
*
hpcolor_laserjet_1500
*
hpcolor_laserjet_2500
*
hpcolor_laserjet_2500l
*
hpcolor_laserjet_2500lse
*
hpcolor_laserjet_2500n
*
hpcolor_laserjet_2500tn
*
hpcolor_laserjet_2605dtn
*
hpcolor_laserjet_4370mfp
20081211_46.211.2:_46.211
hpcolor_laserjet_4600
*
hpcolor_laserjet_4600dn
*
hpcolor_laserjet_4600dtn
*
hpcolor_laserjet_4600hdn
*
hpcolor_laserjet_4650
*
hpcolor_laserjet_4700
*
hpcolor_laserjet_4730_mfp
*
hpcolor_laserjet_5500
*
hpcolor_laserjet_5550
*
hpcolor_laserjet_8500
*
hpcolor_laserjet_8550
*
hpcolor_laserjet_9500
*
hpcolor_laserjet_9500_mfp
*
hpcolor_laserjet_9500mfp
20070719_05.011.2:_05.011
hpcolor_mfp_cm8050
-
hpcolor_mfp_cm8060
-
hpdigital_senders
*
hpedgeline_printers
*
hplaserjet_1000
*
hplaserjet_1005
*
hplaserjet_1010
*
hplaserjet_1012
*
hplaserjet_1015
*
hplaserjet_1018
*
hplaserjet_1018s
*
hplaserjet_1020
*
hplaserjet_1020_plus
*
hplaserjet_1022
*
hplaserjet_1022n
*
hplaserjet_1022nw
*
hplaserjet_1100
*
hplaserjet_1150
*
hplaserjet_1160
*
hplaserjet_1200
*
hplaserjet_1300
*
hplaserjet_1320
*
hplaserjet_2
*
hplaserjet_2000
*
hplaserjet_2100
*
hplaserjet_2200
*
hplaserjet_2200dtn
*
hplaserjet_2300
*
hplaserjet_2300dn
*
hplaserjet_2400
*
hplaserjet_2410
20070410_08.112.3:_08.112
hplaserjet_2420
20070410_08.112.3:_08.112
hplaserjet_2430
*
hplaserjet_2430
20070410_08.112.3:_08.112
hplaserjet_2500
*
hplaserjet_2500c
*
hplaserjet_2600c
*
hplaserjet_2600n
*
hplaserjet_3000
*
hplaserjet_3700
*
hplaserjet_4
*
hplaserjet_4\/4m
*
hplaserjet_4_plus\/m_plus
*
hplaserjet_4000
*
hplaserjet_4000n
*
hplaserjet_4050
*
hplaserjet_4100
*
hplaserjet_4100_mfp
*
hplaserjet_4100mfp
*
hplaserjet_4200
*
hplaserjet_4200dtn
*
hplaserjet_4200ln
*
hplaserjet_4240
*
hplaserjet_4240n
*
hplaserjet_4250
*
hplaserjet_4250
20080319_08.015.0:_08.015
hplaserjet_4300
*
hplaserjet_4345_mfp
*
hplaserjet_4345mfp
20081211_09.131.1:_09.131
hplaserjet_4350
*
hplaserjet_4350
20080319_08.015.0:_08.015
hplaserjet_4350dtn
*
hplaserjet_4650dn
*
hplaserjet_4l\/ml
*
hplaserjet_4m_plus
*
hplaserjet_4p\/mp
*
hplaserjet_4si
*
hplaserjet_4v\/mv
*
hplaserjet_5
*
hplaserjet_5\/m\/n
*
hplaserjet_500_plus
*
hplaserjet_5000
*
hplaserjet_5000
r.25.15
hplaserjet_5000
r.25.47
hplaserjet_5100
*
hplaserjet_5100dtn
*
hplaserjet_5200
*
hplaserjet_5l
*
hplaserjet_5m
*
hplaserjet_5p\/mp
*
hplaserjet_5si
*
hplaserjet_8000
*
hplaserjet_8100
*
hplaserjet_8150
*
hplaserjet_8150dn
*
hplaserjet_9000
*
hplaserjet_9000_mfp
*
hplaserjet_9000mfp
*
hplaserjet_9040
*
hplaserjet_9040
20080204_08.110.0:_08.110
hplaserjet_9040mfp
*
hplaserjet_9040mfp
20080204_08.110.0:_08.110
hplaserjet_9050
*
hplaserjet_9050
20080204_08.110.0:_08.110
hplaserjet_9050_mfp
*
hplaserjet_9050mfp
*
hplaserjet_9050mfp
20080204_08.110.0:_08.110
hplaserjet_9055
*
hplaserjet_9065
*
hplaserjet_9500
*
hplaserjet_9500mfp
*
hplaserjet_ii
*
hplaserjet_iid
*
hplaserjet_iii
*
hplaserjet_iiid
*
hplaserjet_iiip
*
hplaserjet_iiisi
*
hplaserjet_iip
*
hplaserjet_iip_plus
*
hplaserjet_m1522n_mfp
*
hplaserjet_m3027_mfp
*
hplaserjet_m3035_mfp
*
hplaserjet_m4345_mfp
*
hplaserjet_m5025_mfp
*
hplaserjet_m5035_mfp
*
hplaserjet_p1000
*
hplaserjet_p1005
*
hplaserjet_p1006
*
hplaserjet_p1007
*
hplaserjet_p1008
*
hplaserjet_p1009
*
hplaserjet_p1500
*
hplaserjet_p1505
*
hplaserjet_p1505n
*
hplaserjet_p2000
*
hplaserjet_p2010
*
hplaserjet_p2015
*
hplaserjet_p2030
*
hplaserjet_p2050
*
hplaserjet_p3000
*
hplaserjet_p3005
*
hplaserjet_p4010
*
hplaserjet_p4014
*
hplaserjet_p4015
*
hplaserjet_p4500
*
hplaserjet_p4510
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01684566
http://osvdb.org/52847
http://osvdb.org/52848
http://osvdb.org/52849
http://www.louhinetworks.fi/advisory/HP_20090317.txt
http://www.securityfocus.com/archive/1/501884/100/0/threaded
http://www.securityfocus.com/bid/34143
http://www.vupen.com/english/advisories/2009/0754
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01684566
http://osvdb.org/52847
http://osvdb.org/52848
http://osvdb.org/52849
http://www.louhinetworks.fi/advisory/HP_20090317.txt
http://www.securityfocus.com/archive/1/501884/100/0/threaded
http://www.securityfocus.com/bid/34143
http://www.vupen.com/english/advisories/2009/0754