Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2013-4828

HP LaserJet M4555, M525, and M725; LaserJet flow MFP M525c; LaserJet Enterprise color flow MFP M575c; Color LaserJet CM4540, M575, and M775; and ScanJet Enterprise 8500fn1 FutureSmart devices do not properly encrypt PDF documents, which allows remote attackers to obtain sensitive information via unspecified vectors.

Published

2013-10-04T10:44:07.383

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.3 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

  • Access Vector: NETWORK
  • Access Complexity: MEDIUM
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: NONE
  • Availability Impact: NONE
Exploitability Score

8.6

Impact Score

2.9

Weaknesses
  • Type: Primary
    CWE-310
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Hardware hp color_laserjet_cm4540 - Yes
Hardware hp color_laserjet_cm4540f - Yes
Hardware hp color_laserjet_cm4540fskm - Yes
Hardware hp color_laserjet_m575dn - Yes
Hardware hp color_laserjet_m575f - Yes
Hardware hp color_laserjet_m775dn - Yes
Hardware hp color_laserjet_m775f - Yes
Hardware hp color_laserjet_m775z - Yes
Hardware hp color_laserjet_m775z\+ - Yes
Hardware hp laserjet_enterprise_color_flow_m575c - Yes
Hardware hp laserjet_flow_m525c - Yes
Hardware hp laserjet_m4555 - Yes
Hardware hp laserjet_m4555f - Yes
Hardware hp laserjet_m4555fskm - Yes
Hardware hp laserjet_m4555h - Yes
Hardware hp laserjet_m525dn - Yes
Hardware hp laserjet_m525f - Yes
Hardware hp laserjet_m725dn - Yes
Hardware hp laserjet_m725f - Yes
Hardware hp laserjet_m725z - Yes
Hardware hp laserjet_m725z\+ - Yes
Hardware hp scanjet_enterprise_8500fn1 - Yes
References