CVE-2022-43780

high-risk
Published 2022-12-12

Certain HP ENVY, OfficeJet, and DeskJet printers may be vulnerable to a Denial of Service attack.

Do I need to act?

-
0.27% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (20)

M2U75A Firmware
M2U76A Firmware
M2U77A Firmware
M2U81A Firmware
M2U81B Firmware
M2U82A Firmware
M2U82B Firmware
M2U84A Firmware
M2U84B Firmware
M2U85A Firmware
M2U85B Firmware
M2U86A Firmware
M2U86B Firmware
M2U86C Firmware
M2U87A Firmware
M2U87B Firmware
M2U88B Firmware
M2U89B Firmware
M2U91A Firmware
M2U91B Firmware

Affected Vendors

Hp

References (2)

Vendor Advisory https://support.hp.com/us-en/document/ish_7095452-7095489-16/hpsbpi03813
Vendor Advisory https://support.hp.com/us-en/document/ish_7095452-7095489-16/hpsbpi03813
51
/ 100
high-risk
Severity 26/34 · High
Exploitability 1/34 · Minimal
Exposure 24/34 · High