Information Disclosure Vulnerability in HP Photosmart Printers
CVE-2011-1531

Currently unrated

Key Information:

Vendor: HP
Status: Photosmart Premium C510; Envy 100 D410; Photosmart Premium C310; Photosmart D110
Vendor: CVE Published:; 15 April 2011

Summary

The webscan component in the Embedded Web Server (EWS) of specific HP Photosmart printer models allows remote attackers to access and read documents from the scan surface. The vulnerability arises from insufficient security controls permitting unauthorized individuals to exploit this weakness through unspecified vectors.

References

http://securityreason.com/securityalert/8203

third-party-advisoryx_refsource_SREASON

http://www.vupen.com/english/advisories/2011/0931

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/44143

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Apr 15, 2011
Vulnerability Reserved
Mar 29, 2011