CVE-2012-6108

HP Linux Imaging and Printing Project < 3.13.2 - Unauthenticated Log File Deletion via World-Writable Permissions

Title source: llm
STIX 2.1

Description

HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable permissions for /var/log/hp and /var/log/hp/tmp, which allows local users to delete log files via standard filesystem operations.

References (4)

Core 4

Scores

EPSS 0.0006
EPSS Percentile 17.9%

Details

CWE
CWE-264
Status published
Products (27)
hp/linux_imaging_and_printing_project 1.0
hp/linux_imaging_and_printing_project 2.0
hp/linux_imaging_and_printing_project 2.7.10
hp/linux_imaging_and_printing_project 3.9.2
hp/linux_imaging_and_printing_project 3.9.4
hp/linux_imaging_and_printing_project 3.9.4b
hp/linux_imaging_and_printing_project 3.9.6
hp/linux_imaging_and_printing_project 3.9.8
hp/linux_imaging_and_printing_project 3.9.10
hp/linux_imaging_and_printing_project 3.9.12
... and 17 more
Published Feb 15, 2014
Tracked Since Feb 18, 2026