Vulnerability Details : CVE-2001-1040
HP LaserJet, and possibly other JetDirect devices, resets the admin password when the device is turned off, which could allow remote attackers to access the device without the password.
Exploit prediction scoring system (EPSS) score for CVE-2001-1040
Probability of exploitation activity in the next 30 days: 0.27%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 63 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2001-1040
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.4
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:P |
10.0
|
4.9
|
NIST |
References for CVE-2001-1040
-
http://www.securityfocus.com/bid/3132
Patch;Vendor Advisory
-
http://www.securityfocus.com/archive/1/201224
Vendor Advisory
Products affected by CVE-2001-1040
- cpe:2.3:a:hp:jetadmin:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:hp:jetadmin:4.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:hp:jetadmin:6.2:*:*:*:*:*:*:*
- cpe:2.3:a:hp:jetadmin:5.5:*:*:*:*:*:*:*
- cpe:2.3:a:hp:jetadmin:5.5.177:*:*:*:*:*:*:*
- cpe:2.3:a:hp:jetadmin:5.6:*:*:*:*:*:*:*
- cpe:2.3:a:hp:jetadmin:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:hp:jetadmin:5.1:*:*:*:*:*:*:*
- cpe:2.3:a:hp:jetadmin:6.1:*:*:*:*:*:*:*