CVE-2013-4828

Severity

43%

Complexity

86%

Confidentiality

48%

HP LaserJet M4555, M525, and M725; LaserJet flow MFP M525c; LaserJet Enterprise color flow MFP M575c; Color LaserJet CM4540, M575, and M775; and ScanJet Enterprise 8500fn1 FutureSmart devices do not properly encrypt PDF documents, which allows remote attackers to obtain sensitive information via unspecified vectors.

HP LaserJet M4555, M525, and M725; LaserJet flow MFP M525c; LaserJet Enterprise color flow MFP M575c; Color LaserJet CM4540, M575, and M775; and ScanJet Enterprise 8500fn1 FutureSmart devices do not properly encrypt PDF documents, which allows remote attackers to obtain sensitive information via unspecified vectors.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:N/A:N).

Overview

Type

HP

First reported 11 years ago

2013-10-04 10:44:00

Last updated 5 years ago

2019-10-09 23:08:00

Affected Software

HP Color LaserJet M575dn

HP Color LaserJet M575f

HP Color LaserJet M775dn

HP Color LaserJet M775f

HP Color LaserJet M775z

HP Color LaserJet M775z+

HP LaserJet Enterprise color flow M575c

HP LaserJet flow M525c

HP LaserJet M4555

HP LaserJet M4555f

HP LaserJet M4555fskm

HP LaserJet M4555h

HP LaserJet M525dn

HP LaserJet M525f

HP LaserJet M725dn

HP LaserJet M725f

HP LaserJet M725z

HP LaserJet M725z+

References

HPSBPI02892

Vendor Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.