Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default configuration of the PJL Access value in the File System External Access settings on HP LaserJet MFP printers, Color LaserJet MFP printers, and LaserJet 4100, 4200, 4300, 5100, 8150, and 9000 printers enables PJL commands that use the device's filesystem, which allows remote attackers to read arbitrary files via a command inside a print job, as demonstrated by a directory traversal attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HP多个打印机产品目录遍历漏洞
Vulnerability Description
HP LaserJet 是美国惠普公司推出的激光打印机系列产品。 HP LaserJet MFP打印机,Color LaserJet MFP打印机,以及LaserJet 4100,4200,4300,5100,8150,及9000型打印机中的File System External Access设置中的PJL Access值的默认配置启用使用该设备文件系统的PJL命令。远程攻击者可以借助打印任务中的命令读取任意文件。该漏洞已经通过目录遍历攻击得到证实。
CVSS Information
N/A
Vulnerability Type
N/A