CVE-2017-2750 — CRITICAL (9.8)

Q: How severe is CVE-2017-2750?

CVE-2017-2750 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2017-2750?

Check the references section above for vendor advisories and patch information. Affected products include: Hp L2683A Firmware, Hp L2683A, Hp L2717A Firmware, Hp L2717A, Hp L2762A Firmware.

Vulnerability Description

Insufficient Solution DLL Signature Validation allows potential execution of arbitrary code in HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP OfficeJet Enterprise printers before 2308937_578479, 2405087_018548, and other firmware versions.

CVSS Score

9.8

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Hp	L2683A Firmware	< 2405087_018552
Hp	L2683A	-
Hp	L2717A Firmware	< 2308937_578486
Hp	L2717A	-
Hp	L2762A Firmware	< 2308937_578483
Hp	L2762A	-
Hp	J7Z13A Firmware	< 2405087_018548
Hp	J7Z13A	-
Hp	Z5G79A Firmware	< 2405087_018548
Hp	Z5G79A	-
Hp	L3U42A Firmware	< 2405129_000066
Hp	L3U42A	-
Hp	J7Z08A Firmware	< 2405087_018548
Hp	J7Z08A	-
Hp	J7Z14A Firmware	< 2405087_018548
Hp	J7Z14A	-
Hp	Z5G77A Firmware	< 2405087_018548
Hp	Z5G77A	-
Hp	J7Z03A Firmware	< 2405087_018548
Hp	J7Z03A	-

Related Weaknesses (CWE)

CWE-20

References

http://www.securityfocus.com/bid/101965Third Party AdvisoryVDB Entry
https://support.hp.com/us-en/document/c05839270MitigationVendor Advisory
http://www.securityfocus.com/bid/101965Third Party AdvisoryVDB Entry
https://support.hp.com/us-en/document/c05839270MitigationVendor Advisory

FAQ

What is CVE-2017-2750?

CVE-2017-2750 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Insufficient Solution DLL Signature Validation allows potential execution of arbitrary code in HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Office...

How severe is CVE-2017-2750?

CVE-2017-2750 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2017-2750?

Check the references section above for vendor advisories and patch information. Affected products include: Hp L2683A Firmware, Hp L2683A, Hp L2717A Firmware, Hp L2717A, Hp L2762A Firmware.