CVE-2024-2301

Summary

Certain HP LaserJet Pro devices are potentially vulnerable to a Cross-Site Scripting (XSS) attack via the web management interface of the device.

Affected Software

VendorProductVersion RangeStatus
HP Inc.Certain HP LaserJet Pro DevicesSee HP Security Bulletin reference for affected versions.affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References