CVE-2011-2722
Notifications for a CVE
Stay informed of any changes for a specific CVE.
CVE Descriptions
The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file.
CVE Informations
Related Weaknesses
| Weakness Name | Source | |
|---|---|---|
| Improper Link Resolution Before File Access ('Link Following') The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource. |
Metrics
| Metrics | Score | Severity | CVSS Vector | Source |
|---|---|---|---|---|
| V2 | 1.2 | AV:L/AC:H/Au:N/C:N/I:P/A:N | nvd@nist.gov |
EPSS
EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.
EPSS Score
The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.
EPSS Percentile
The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
Products Mentioned
Configuraton 0
Hp>>Linux_imaging_and_printing_project >> Version To (including) 3.11.5
- Hp>>Linux_imaging_and_printing_project >> Version - (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 1.0 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 2.0 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 2.7.10 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.2 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.4 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.4b (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.6 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.8 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.10 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.12 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.10.2 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.10.5 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.10.6 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.10.9 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.11.1 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.11.3 (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.11.3a (Open CPE detail)
- Hp>>Linux_imaging_and_printing_project >> Version 3.11.5 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.9.2
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.2 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.9.4
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.4 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.9.4b
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.4b (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.9.6
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.6 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.9.8
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.8 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.9.10
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.10 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.9.12
- Hp>>Linux_imaging_and_printing_project >> Version 3.9.12 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.10.2
- Hp>>Linux_imaging_and_printing_project >> Version 3.10.2 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.10.5
- Hp>>Linux_imaging_and_printing_project >> Version 3.10.5 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.10.6
- Hp>>Linux_imaging_and_printing_project >> Version 3.10.6 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.10.9
- Hp>>Linux_imaging_and_printing_project >> Version 3.10.9 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.11.1
- Hp>>Linux_imaging_and_printing_project >> Version 3.11.1 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.11.3
- Hp>>Linux_imaging_and_printing_project >> Version 3.11.3 (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.11.3a
- Hp>>Linux_imaging_and_printing_project >> Version 3.11.3a (Open CPE detail)
Hp>>Linux_imaging_and_printing_project >> Version 3.11.7
- Hp>>Linux_imaging_and_printing_project >> Version 3.11.7 (Open CPE detail)
