{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-1526", "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "state": "PUBLISHED", "assignerShortName": "hp", "dateReserved": "2023-03-20T20:39:28.035Z", "datePublished": "2023-04-28T16:04:13.185Z", "dateUpdated": "2025-01-30T19:29:46.760Z"}, "containers": {"cna": {"descriptions": [{"lang": "en", "value": "Certain DesignJet and PageWide XL TAA compliant models may have risk of potential information disclosure if the hard disk drive is physically removed from the printer."}], "affected": [{"versions": [{"version": "See HP Security Bulletin reference for affected versions.", "status": "affected"}], "product": "HP DesignJet and PageWide XL", "vendor": "HP Inc."}], "references": [{"url": "https://support.hp.com/us-en/document/ish_7869666-7869691-16/hpsbpi03837"}], "providerMetadata": {"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "shortName": "hp", "dateUpdated": "2023-04-28T16:04:13.185Z"}, "x_generator": {"engine": "cveClient/1.0.13"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T05:49:11.657Z"}, "title": "CVE Program Container", "references": [{"url": "https://support.hp.com/us-en/document/ish_7869666-7869691-16/hpsbpi03837", "tags": ["x_transferred"]}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-noinfo Not enough information"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.6, "attackVector": "PHYSICAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-01-30T19:28:50.354231Z", "id": "CVE-2023-1526", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-01-30T19:29:46.760Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://support.hp.com/us-en/document/ish_7869666-7869691-16/hpsbpi03837", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T05:49:11.657Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.6, "attackVector": "PHYSICAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2023-1526", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-01-30T19:28:50.354231Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "description": "CWE-noinfo Not enough information"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-01-30T19:28:46.454Z"}}], "cna": {"affected": [{"vendor": "HP Inc.", "product": "HP DesignJet and PageWide XL", "versions": [{"status": "affected", "version": "See HP Security Bulletin reference for affected versions."}]}], "references": [{"url": "https://support.hp.com/us-en/document/ish_7869666-7869691-16/hpsbpi03837"}], "x_generator": {"engine": "cveClient/1.0.13"}, "descriptions": [{"lang": "en", "value": "Certain DesignJet and PageWide XL TAA compliant models may have risk of potential information disclosure if the hard disk drive is physically removed from the printer."}], "providerMetadata": {"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "shortName": "hp", "dateUpdated": "2023-04-28T16:04:13.185Z"}}}, "cveMetadata": {"cveId": "CVE-2023-1526", "state": "PUBLISHED", "dateUpdated": "2025-01-30T19:29:46.760Z", "dateReserved": "2023-03-20T20:39:28.035Z", "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "datePublished": "2023-04-28T16:04:13.185Z", "assignerShortName": "hp"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:designjet_z6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "79275045-E680-4980-AE2E-E4B4FF2F9EF9", "versionEndExcluding": "jgr6_09_22_51.2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:designjet_z6:-:*:*:*:*:*:*:*", "matchCriteriaId": "3AC21A58-00BA-4EDF-9EF0-870AE44D218B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:designjet_z6dr_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D98922E6-9D13-499C-BD28-E6FE2BC60327", "versionEndExcluding": "jgr6_09_22_51.2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:designjet_z6dr:-:*:*:*:*:*:*:*", "matchCriteriaId": "9830F6D2-A1EF-48D9-A9FE-EF4F3CC37A9C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:designjet_z9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DF1E5F8A-53F4-4575-B647-21FE43BD81D6", "versionEndExcluding": "jgr9_09_22_51.2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:designjet_z9:-:*:*:*:*:*:*:*", "matchCriteriaId": "E8876C93-02EA-4AB0-BD3E-E73C5293BD74", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:designjet_z9dr_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FBB204FE-BCF4-49E4-B86B-D8DAC3B65174", "versionEndExcluding": "jgr9_09_22_51.2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:designjet_z9dr:-:*:*:*:*:*:*:*", "matchCriteriaId": "944C8DAB-1262-4D78-943E-BE43FCA7AF86", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:designjet_z9\\+_pro_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "C5038AB0-6D73-4CC3-9790-82BADDBF48A2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:designjet_z9\\+_pro:-:*:*:*:*:*:*:*", "matchCriteriaId": "D3B5271B-CA09-45EB-BE82-5573E15BCB7B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:pagewide_xl_4700:_firmware:-:*:*:*:*:*:*", "matchCriteriaId": "9E35992F-797A-4210-AD84-B73119A8119D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:pagewide_xl_4700:-:*:*:*:*:*:*:*", "matchCriteriaId": "CD7EFD29-61E5-44DD-BF9E-E7A94C7518D3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:pagewide_xl_4500:_firmware:-:*:*:*:*:*:*", "matchCriteriaId": "59D4C8D4-634D-4328-BADA-586D0DB774B5", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:pagewide_xl_4500:-:*:*:*:*:*:*:*", "matchCriteriaId": "C79CA733-FC8F-409E-B7F5-17C62C352C07", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:pagewide_xl_4100:_firmware:-:*:*:*:*:*:*", "matchCriteriaId": "F336F37C-C59F-48C4-884A-6EEFE2CEDBAE", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:pagewide_xl_4100:-:*:*:*:*:*:*:*", "matchCriteriaId": "8176BFFE-C208-4E5C-9D68-666A747D84B2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:pagewide_xl_4600:_firmware:-:*:*:*:*:*:*", "matchCriteriaId": "8D0C17BB-2F0F-4AD9-9C53-BE5F07D4817A", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:pagewide_xl_4600:-:*:*:*:*:*:*:*", "matchCriteriaId": "4B438074-4FBD-4167-8B49-E632088108B1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:pagewide_xl_8000:_firmware:-:*:*:*:*:*:*", "matchCriteriaId": "724920B8-F956-457F-9CBF-0F0620AC4630", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:hp:pagewide_xl_8000:-:*:*:*:*:*:*:*", "matchCriteriaId": "E9889CAC-98CE-48D8-B49B-BAB37CC8AFC2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Certain DesignJet and PageWide XL TAA compliant models may have risk of potential information disclosure if the hard disk drive is physically removed from the printer."}], "id": "CVE-2023-1526", "lastModified": "2025-01-30T20:15:30.230", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 4.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 0.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "NONE", "baseScore": 4.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 0.9, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2023-04-28T17:15:42.973", "references": [{"source": "hp-security-alert@hp.com", "tags": ["Vendor Advisory"], "url": "https://support.hp.com/us-en/document/ish_7869666-7869691-16/hpsbpi03837"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.hp.com/us-en/document/ish_7869666-7869691-16/hpsbpi03837"}], "sourceIdentifier": "hp-security-alert@hp.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}