CVE-2012-6108

HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable permissions for /var/log/hp and /var/log/hp/tmp, which allows local users to delete log files via standard filesystem operations.

Published: Feb 15, 2014
Updated: Apr 13, 2023
CVE: CVE-2012-6108
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
hp / linux_imaging_and_printing_project	-	3.13.1.x
hp / linux_imaging_and_printing_project	3.9.6	3.9.6.x
hp / linux_imaging_and_printing_project	3.10.6	3.10.6.x
hp / linux_imaging_and_printing_project	3.12.10	3.12.10.x
hp / linux_imaging_and_printing_project	3.11.1	3.11.1.x
hp / linux_imaging_and_printing_project	3.11.3a	3.11.3a.x
hp / linux_imaging_and_printing_project	3.9.4b	3.9.4b.x
hp / linux_imaging_and_printing_project	3.12.10-a	3.12.10-a.x
hp / linux_imaging_and_printing_project	3.9.12	3.9.12.x
hp / linux_imaging_and_printing_project	3.12.2	3.12.2.x
hp / linux_imaging_and_printing_project	1.0	1.0.x
hp / linux_imaging_and_printing_project	2.7.10	2.7.10.x
hp / linux_imaging_and_printing_project	3.12.9	3.12.9.x
hp / linux_imaging_and_printing_project	2.0	2.0.x
hp / linux_imaging_and_printing_project	3.9.4	3.9.4.x
hp / linux_imaging_and_printing_project	3.9.10	3.9.10.x
hp / linux_imaging_and_printing_project	3.10.9	3.10.9.x
hp / linux_imaging_and_printing_project	3.12.6	3.12.6.x
hp / linux_imaging_and_printing_project	3.9.8	3.9.8.x
hp / linux_imaging_and_printing_project	3.10.5	3.10.5.x
hp / linux_imaging_and_printing_project	3.11.3	3.11.3.x
hp / linux_imaging_and_printing_project	3.11.5	3.11.5.x
hp / linux_imaging_and_printing_project	3.11.10	3.11.10.x
hp / linux_imaging_and_printing_project	3.9.2	3.9.2.x
hp / linux_imaging_and_printing_project	3.10.2	3.10.2.x
hp / linux_imaging_and_printing_project	3.12.4	3.12.4.x
hp / linux_imaging_and_printing_project	3.11.7	3.11.7.x
hp / linux_imaging_and_printing_project	3.12.11	3.12.11.x

Vulnerability Database

290,273

CVE-2012-6108