Vulnerability CVE-2018-5921


Published: 2018-10-03

Description:
A potential security vulnerability has been identified with certain HP printers and MFPs in 2405129_000052 and other firmware versions. This vulnerability is known as Cross Site Request Forgery, and could potentially be exploited remotely to allow elevation of privilege.

Type:

CWE-352

(Cross-Site Request Forgery (CSRF))

Vendor: HP
Product: J7x28a firmware 
Version: _2308214_000912;
Product: E6b71a firmware 
Version: _2308214_000908;
Product: Cc522a firmware 
Version: 2308214_000932;
Product: Cc523a firmware 
Version: 2308214_000932;
Product: Cc524a firmware 
Version: 2308214_000932;
Product: A2w77a firmware 
Version: 2308214_000930;
Product: A2w78a firmware 
Version: 2308214_000930;
Product: A2w79a firmware 
Version: 2308214_000930;
Product: D7p70a firmware 
Version: 2308214_000928;
Product: D7p71a firmware 
Version: 2308214_000928;
Product: A2w75a firmware 
Version: 2308214_000928;
Product: A2w76a firmware 
Version: 2308214_000928;
Product: Cd644a firmware 
Version: 2308214_000925;
Product: Cd645a firmware 
Version: 2308214_000925;
Product: Cd646a firmware 
Version: 2308214_000925;
Product: G1w41a firmware 
Version: 2308214_000923;
Product: L3u42a firmware 
Version: 2308214_000923;
Product: L3u43a firmware 
Version: 2308214_000923;
Product: G1w39a firmware 
Version: 2308214_000923;
Product: G1w40a firmware 
Version: 2308214_000923;
Product: Cf069a firmware 
Version: 2308214_000921;
Product: Cf066a firmware 
Version: 2308214_000921;
Product: Cf067a firmware 
Version: 2308214_000921;
Product: Cf068a firmware 
Version: 2308214_000921;
Product: Cz244a firmware 
Version: 2308214_000920;
Product: Cz245a firmware 
Version: 2308214_000920;
Product: Cf367a firmware 
Version: 2308214_000916;
Product: Cf116a firmware 
Version: 2308214_000913;
Product: Cf117a firmware 
Version: 2308214_000913;
Product: Cf118a firmware 
Version: 2308214_000913;
Product: B3g85a firmware 
Version: 2308214_000912;
Product: G1w46a firmware 
Version: 2308214_000910;
Product: G1w46v firmware 
Version: 2308214_000910;
Product: L3u44a firmware 
Version: 2308214_000910;
Product: G1w47a firmware 
Version: 2308214_000910;
Product: G1w47v firmware 
Version: 2308214_000910;
Product: B5l46a firmware 
Version: 2308214_000909;
Product: B5l47a firmware 
Version: 2308214_000909;
Product: B5l48a firmware 
Version: 2308214_000909;
Product: E6b73a firmware 
Version: 2308214_000908;
Product: B5l26a firmware 
Version: 2308214_000907;
Product: C2s11a firmware 
Version: 2308214_000906;
Product: C2s12a firmware 
Version: 2308214_000906;
Product: F2a76a firmware 
Version: 2308214_000905;
Product: F2a77a firmware 
Version: 2308214_000905;
Product: F2a81a firmware 
Version: 2308214_000905;
Product: B5l07a firmware 
Version: 2308214_000902;
Product: B5l04a firmware 
Version: 2308214_000902;
Product: B5l05a firmware 
Version: 2308214_000902;

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
6.4/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

 References:
https://support.hp.com/us-en/document/c05949322

Related CVE
CVE-2018-7116
HPE Intelligent Management Center (IMC) prior to IMC PLAT 7.3 (E0605P06) is vulnerable to a remote denial of service via dbman Opcode 10003 'Filename'. This problem is resolved in IMC PLAT 7.3 (E0605P06) or subsequent versions.
CVE-2018-7115
HPE Intelligent Management Center (IMC) prior to IMC PLAT 7.3 (E0605P06) is vulnerable to a remote buffer overflow in dbman.exe opcode 10001 on Windows. This problem is resolved in IMC PLAT 7.3 (E0605P06) or subsequent versions.
CVE-2018-7114
HPE Intelligent Management Center (IMC) prior to IMC PLAT 7.3 (E0605P06) is vulnerable to remote buffer overflow in dbman leading to code execution. This problem is resolved in IMC PLAT 7.3 (E0605P06) or subsequent versions.
CVE-2018-7076
A remote code execution vulnerability was identified in HPE Intelligent Management Center (iMC) prior to iMC PLAT 7.3 E0605P04.
CVE-2017-2751
A BIOS password extraction vulnerability has been reported on certain consumer notebooks with firmware F.22 and others. The BIOS password was stored in CMOS in a way that allowed it to be extracted. This applies to consumer notebooks launched in earl...
CVE-2018-9069
In some Lenovo IdeaPad consumer notebook models, a race condition in the BIOS flash device locking mechanism is not adequately protected against, potentially allowing an attacker with administrator access to alter the contents of BIOS.
CVE-2018-7109
HPE has addressed a remote arbitrary file modification vulnerability in HPE enhanced Internet Usage Manager (eIUM) v9.0FP1 with the cumulative patch for v9.0FP1 - eIUM90FP01XXX.YYYYMMDD-HHMM.
CVE-2018-7105
A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4 (iLO 4) prior to v2.61, HPE Integrated Lights-Out 3 (iLO 3) prior to v1.90 could be remotely exploited to execute arbitr...

Copyright 2019, cxsecurity.com

 

Back to Top