PT-2021-21298 · Hewlett Packard · Hp Pagewide Mfps+1

Published

2021-10-29

Updated

2021-11-04

CVE-2021-3662

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions HP Enterprise LaserJet and PageWide MFPs (affected versions not specified)

Description The issue concerns stored cross site scripting (XSS) in certain HP Enterprise LaserJet and PageWide MFPs. Stored XSS is a type of security vulnerability that occurs when an application stores user input data without proper validation and later displays it to other users, allowing an attacker to inject malicious scripts.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2021-3662

Affected Products

Hp Laserjet Enterprise

Hp Pagewide Mfps

PT-2021-21298 · Hewlett Packard · Hp Pagewide Mfps+1

CVE-2021-3662

Weakness Enumeration

Related Identifiers

Affected Products

References · 5