Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2009-0940

Multiple cross-site request forgery (CSRF) vulnerabilities in the HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders allow remote attackers to hijack the intranet connectivity of arbitrary users for requests that (1) print documents via unknown vectors, (2) modify the network configuration via a NetIPChange request to hp/device/config_result_YesNo.html/config, or (3) change the password via the Password and ConfirmPassword parameters to hp/device/set_config_password.html/config.

  • Published: Mar 18, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-0940
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5.1
  • AV:N/AC:H/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
hp / laserjet_p4010 - -
hp / laserjet_2600n - -
hp / color_laserjet_4370mfp 20081211_46.211.2 20081211_46.211.2.x
hp / laserjet_4200 - -
hp / laserjet_ii - -
hp / color_laserjet_2500l - -
hp / laserjet_2600c - -
hp / laserjet_4100_mfp - -
hp / laserjet_p1006 - -
hp / laserjet_4200ln - -
hp / laserjet_2100 - -
hp / laserjet_2 - -
hp / laserjet_4250 - -
hp / laserjet_2200dtn - -
hp / laserjet_1012 - -
hp / laserjet_p3005 - -
hp / laserjet_1010 - -
hp / laserjet_9000 - -
hp / laserjet_1018 - -
hp / laserjet_4100 - -
hp / laserjet_4200dtn - -
hp / laserjet_2410 20070410_08.112.3 20070410_08.112.3.x
hp / laserjet_3000 - -
hp / laserjet_500_plus - -
hp / laserjet_4_plus/m_plus - -
hp / laserjet_9000mfp - -
hp / laserjet_9500mfp - -
hp / color_laserjet_2500lse - -
hp / laserjet_p1000 - -
hp / color_laserjet_1500 - -
hp / laserjet_1005 - -
hp / laserjet_5000 r.25.15 r.25.15.x
hp / laserjet_m5035_mfp - -
hp / laserjet_p2015 - -
hp / laserjet_5200 - -
hp / laserjet_9050mfp 20080204_08.110.0 20080204_08.110.0.x
hp / color_laserjet_5500 - -
hp / laserjet_m5025_mfp - -
hp / laserjet_9050 20080204_08.110.0 20080204_08.110.0.x
hp / laserjet_8150dn - -
hp / laserjet_p1008 - -
hp / laserjet_9040 20080204_08.110.0 20080204_08.110.0.x
hp / laserjet_5si - -
hp / laserjet_iiisi - -
hp / color_laserjet_4700 - -
hp / color_laserjet_2500 - -
hp / laserjet_p4510 - -
hp / laserjet_1300 - -
hp / color_laserjet_4600hdn - -
hp / laserjet_9050 - -
hp / laserjet_p2050 - -
hp / laserjet_5l - -
hp / laserjet_p4015 - -
hp / laserjet_4240n - -
hp / laserjet_4000 - -
hp / laserjet_4350 20080319_08.015.0 20080319_08.015.0.x
hp / laserjet_p4014 - -
hp / laserjet_m1522n_mfp - -
hp / laserjet_4350dtn - -
hp / laserjet_1320 - -
hp / laserjet_1020_plus - -
hp / laserjet_p2000 - -
hp / color_laserjet_9500mfp 20070719_05.011.2 20070719_05.011.2.x
hp / laserjet_p2010 - -
hp / color_laserjet_4600dtn - -
hp / laserjet_2400 - -
hp / laserjet_iid - -
hp / laserjet_9050mfp - -
hp / laserjet_3700 - -
hp / color_laserjet_2500n - -
hp / laserjet_5100dtn - -
hp / laserjet_p1007 - -
hp / laserjet_5000 - -
hp / laserjet_4p/mp - -
hp / laserjet_9040mfp 20080204_08.110.0 20080204_08.110.0.x
hp / laserjet_9065 - -
hp / laserjet_m3035_mfp - -
hp / laserjet_5/m/n - -
hp / laserjet_2420 20070410_08.112.3 20070410_08.112.3.x
hp / laserjet_1020 - -
hp / laserjet_4000n - -
hp / color_laserjet_2605dtn - -
hp / laserjet_4v/mv - -
hp / laserjet_5m - -
hp / laserjet_5100 - -
hp / laserjet_p1500 - -
hp / laserjet_9040 - -
hp / laserjet_2300 - -
hp / laserjet_iiid - -
hp / color_laserjet_4730_mfp - -
hp / color_laserjet_5550 - -
hp / laserjet_9000_mfp - -
hp / laserjet_5100 .29.12 .29.12.x
hp / laserjet_4250 20080319_08.015.0 20080319_08.015.0.x
hp / color_laserjet_9500_mfp - -
hp / laserjet_1015 - -
hp / laserjet_p1505 - -
hp / laserjet_2000 - -
hp / color_laserjet_9500 - -
hp / laserjet_p1009 - -
hp / laserjet_9050_mfp - -
hp / laserjet_9055 - -
hp / laserjet_p3000 - -
hp / laserjet_4345mfp 20081211_09.131.1 20081211_09.131.1.x
hp / laserjet_5000 r.25.47 r.25.47.x
hp / laserjet_1022nw - -
hp / laserjet_1160 - -
hp / edgeline_printers - -
hp / laserjet_1000 - -
hp / laserjet_2300dn - -
hp / laserjet_p1505n - -
hp / laserjet_iii - -
hp / laserjet_4 - -
hp / laserjet_p2030 - -
hp / laserjet_5p/mp - -
hp / laserjet_m3027_mfp - -
hp / laserjet_4050 - -
hp / laserjet_p1005 - -
hp / laserjet_2500 - -
hp / laserjet_iip - -
hp / laserjet_9500 - -
hp / laserjet_4l/ml - -
hp / color_laserjet_4650 - -
hp / laserjet_8000 - -
hp / laserjet_1022 - -
hp / laserjet_p4500 - -
hp / laserjet_4650dn - -
hp / color_laserjet_8500 - -
hp / laserjet_8150 - -
hp / color_laserjet - -
hp / laserjet_4350 - -
hp / color_laserjet_4600 - -
hp / laserjet_1018s - -
hp / laserjet_4300 - -
hp / laserjet_4si - -
hp / laserjet_iip_plus - -
hp / laserjet_9040mfp - -
hp / laserjet_4100mfp - -
hp / laserjet_1200 - -
hp / laserjet_4240 - -
hp / color_laserjet_2500tn - -
hp / laserjet_1150 - -
hp / color_laserjet_4600dn - -
hp / laserjet_m4345_mfp - -
hp / laserjet_5 - -
hp / digital_senders - -
hp / laserjet_4/4m - -
hp / laserjet_4m_plus - -
hp / laserjet_2430 20070410_08.112.3 20070410_08.112.3.x
hp / laserjet_1100 - -
hp / laserjet_8100 - -
hp / laserjet_2430 - -
hp / color_laserjet_8550 - -
hp / laserjet_iiip - -
hp / laserjet_2200 - -
hp / laserjet_1022n - -
hp / laserjet_4345_mfp - -
hp / laserjet_2500c - -