Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in the HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders allow remote attackers to hijack the intranet connectivity of arbitrary users for requests that (1) print documents via unknown vectors, (2) modify the network configuration via a NetIPChange request to hp/device/config_result_YesNo.html/config, or (3) change the password via the Password and ConfirmPassword parameters to hp/device/set_config_password.html/config.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HP LaserJet打印机HP Embedded Web Server多个跨站请求伪造漏洞
Vulnerability Description
HP LaserJet是HP推出的激光打印机系列。 LaserJet系列激光打印机所内嵌的WEB服务器默认下接受TCP 9100端口上所发送的打印请求。如果用户受骗访问了包含有恶意代码的网站的话,就可能导致跨站请求伪造攻击,非授权更改打印机网络配置或用户口令。
CVSS Information
N/A
Vulnerability Type
N/A