CVE-2022-2794 — HIGH (7.5) — White Hats Nepal

Q: What is CVE-2022-2794?

CVE-2022-2794 is a vulnerability with a CVSS score of 7.5 (HIGH). Certain HP PageWide Pro Printers may be vulnerable to a potential denial of service attack.

Q: How severe is CVE-2022-2794?

CVE-2022-2794 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-2794?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Pagewide 352Dw J6U57A Firmware, Hp Pagewide 352Dw J6U57A, Hp Pagewide 377Dw J9V80A Firmware, Hp Pagewide 377Dw J9V80A, Hp Pagewide Managed P55250Dw J6U55A Firmware.

Vulnerability Description

Certain HP PageWide Pro Printers may be vulnerable to a potential denial of service attack.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Hp	Pagewide 352Dw J6U57A Firmware	< 2228b
Hp	Pagewide 352Dw J6U57A	-
Hp	Pagewide 377Dw J9V80A Firmware	< 2228b
Hp	Pagewide 377Dw J9V80A	-
Hp	Pagewide Managed P55250Dw J6U55A Firmware	< 2228b
Hp	Pagewide Managed P55250Dw J6U55A	-
Hp	Pagewide Managed P55250Dw J6U51B Firmware	< 2228b
Hp	Pagewide Managed P55250Dw J6U51B	-
Hp	Pagewide Managed P55250Dw J6U55B Firmware	< 2228b
Hp	Pagewide Managed P55250Dw J6U55B	-
Hp	Pagewide Managed P57750Dw J9V82A Firmware	< 2228b
Hp	Pagewide Managed P57750Dw J9V82A	-
Hp	Pagewide Pro 452Dn D3Q15A Firmware	< 2228b
Hp	Pagewide Pro 452Dn D3Q15A	-
Hp	Pagewide Pro 452Dw D3Q16A Firmware	< 2228b
Hp	Pagewide Pro 452Dw D3Q16A	-
Hp	Pagewide Pro 477Dn D3Q19A Firmware	< 2228b
Hp	Pagewide Pro 477Dn D3Q19A	-
Hp	Pagewide Pro 477Dw D3Q20A Firmware	< 2228b
Hp	Pagewide Pro 477Dw D3Q20A	-

Related Weaknesses (CWE)

CWE-400

References

https://support.hp.com/us-en/document/ish_6720386-6720411-16/hpsbpi03807Vendor Advisory
https://support.hp.com/us-en/document/ish_6720386-6720411-16/hpsbpi03807Vendor Advisory

FAQ

What is CVE-2022-2794?

CVE-2022-2794 is a vulnerability with a CVSS score of 7.5 (HIGH). Certain HP PageWide Pro Printers may be vulnerable to a potential denial of service attack.

How severe is CVE-2022-2794?

CVE-2022-2794 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-2794?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Pagewide 352Dw J6U57A Firmware, Hp Pagewide 352Dw J6U57A, Hp Pagewide 377Dw J9V80A Firmware, Hp Pagewide 377Dw J9V80A, Hp Pagewide Managed P55250Dw J6U55A Firmware.