CVE-2017-2750
CRITICALHP L2683a Firmware < 2405087_018552 - Improper Input Validation
Title source: ruleDescription
Insufficient Solution DLL Signature Validation allows potential execution of arbitrary code in HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP OfficeJet Enterprise printers before 2308937_578479, 2405087_018548, and other firmware versions.
References (2)
Core 2
Core References
Mitigation, Vendor Advisory vendor-advisory
x_refsource_hp
https://support.hp.com/us-en/document/c05839270
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/101965
Scores
CVSS v3
9.8
EPSS
0.1402
EPSS Percentile
94.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
Status
published
Products (50)
hp/a2w75a_firmware
< 2405129_000054
hp/a2w76a_firmware
< 2405129_000054
hp/a2w77a_firmware
< 2405129_000057
hp/a2w78a_firmware
< 2405129_000057
hp/a2w79a_firmware
< 2405129_000057
hp/b3g84a_firmware
< 2405129_000040
hp/b3g85a_firmware
< 2308937_578479
hp/b3g86a_firmware
< 2405129_000040
hp/b5l04a_firmware
< 2405129_000050
hp/b5l04v_firmware
< 2405129_000050
... and 40 more
Published
Jan 23, 2018
Tracked Since
Feb 18, 2026