CVE-2024-5143

May 23, 2024, 5:15 p.m.

None
No Score

Description

A user with device administrative privileges can change existing SMTP server settings on the device, without having to re-enter SMTP server credentials. By redirecting send-to-email traffic to the new server, the original SMTP server credentials may potentially be exposed.

Product(s) Impacted

Product Versions
UNKNOWN
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://support.hp.com/us-en/document/ish_10643804-10643841-16/HPSBPI03941

Tags

hp-security-alert@hp.com
2024-05-23
CVE-2024-5143

Timeline

Published: May 23, 2024, 5:15 p.m.
Last Modified: May 23, 2024, 5:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

hp-security-alert@hp.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.