Vulnerabilities > HP
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2013-10-04 | CVE-2013-4829 | Information Exposure vulnerability in HP products HP LaserJet M4555, M525, and M725; LaserJet flow MFP M525c; LaserJet Enterprise color flow MFP M575c; Color LaserJet CM4540, M575, and M775; and ScanJet Enterprise 8500fn1 FutureSmart devices allow local users to read images of arbitrary scanned documents via unspecified vectors. | 1.5 |
| 2013-10-04 | CVE-2013-4828 | Cryptographic Issues vulnerability in HP products HP LaserJet M4555, M525, and M725; LaserJet flow MFP M525c; LaserJet Enterprise color flow MFP M575c; Color LaserJet CM4540, M575, and M775; and ScanJet Enterprise 8500fn1 FutureSmart devices do not properly encrypt PDF documents, which allows remote attackers to obtain sensitive information via unspecified vectors. | 4.3 |
| 2013-09-23 | CVE-2013-4821 | Remote Denial of Service vulnerability in HP System Management Homepage Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors. | 4.0 |
| 2013-09-23 | CVE-2013-4820 | Remote Unauthorized Access vulnerability in Multiple HP IceWall Products Unspecified vulnerability in HP IceWall SSO 8.0 through 10.0, IceWall SSO Agent Option 8.0 through 10.0, IceWall SSO Smart Device Option 10.0, IceWall SSO SAML2 Agent Option 8.0, IceWall SSO JAVA Agent Library 8.0 through 10.0, IceWall Federation Agent 3.0, and IceWall File Manager 3.0 through SP4 allows remote authenticated users to obtain sensitive information via unknown vectors. | 2.1 |
| 2013-09-23 | CVE-2013-4819 | Remote Unauthorized Access vulnerability in HP IceWall SSO Unspecified vulnerability in HP IceWall SSO Agent Option 8.0 through 10.0 allows remote authenticated users to obtain sensitive information via unknown vectors. network hp | 3.5 |
| 2013-09-23 | CVE-2013-4818 | Remote Unauthorized Access vulnerability in Multiple HP IceWall Products Unspecified vulnerability in HP IceWall SSO 8.0 through 10.0, IceWall SSO Agent Option 8.0 through 10.0, IceWall SSO Smart Device Option 10.0, and IceWall File Manager 3.0 through SP4 allows remote attackers to obtain sensitive information via unknown vectors. | 5.0 |
| 2013-09-23 | CVE-2013-4817 | Remote Unauthorized Access vulnerability in HP IceWall SSO Unspecified vulnerability in HP IceWall SSO Agent Option 8.0 through 10.0 allows remote attackers to obtain sensitive information via unknown vectors. | 5.0 |
| 2013-09-23 | CVE-2013-4814 | Cross-Site Scripting vulnerability in HP XP 9000 Command View Cross-site scripting (XSS) vulnerability in HP XP P9000 Command View Advanced Edition Suite Software 7.x before 7.5.0-02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2013-09-23 | CVE-2013-4325 | Permissions, Privileges, and Access Controls vulnerability in HP Linux Imaging and Printing Project The check_permission_v1 function in base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.9 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process. | 6.9 |
| 2013-09-16 | CVE-2013-4813 | Code Injection vulnerability in HP Identity Driven Manager and Procurve Manager The Agent (aka AgentController) servlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allows remote attackers to execute arbitrary commands via a HEAD request, aka ZDI-CAN-1745. | 10.0 |