CVE-2026-1997 in OfficeJet Pro 8730 All-in-One Printerinfo

Zusammenfassung

von MITRE • 10.02.2026

Certain HP OfficeJet Pro printers may expose information if Cross‑Origin Resource Sharing (CORS) is misconfigured, potentially allowing unauthorized web origins to access device resource.

CORS is disabled by default on Pro‑class devices and can only be enabled by an administrator through the Embedded Web Server (EWS). Keeping CORS disabled unless explicitly required helps ensure that only trusted solutions can interact with the device.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

05.02.2026

Veröffentlichung

10.02.2026

Moderieren

akzeptiert

Eintrag

VDB-345313

CPE

bereit

CWE

CWE-346 (bestätigt)

CVSS

5.3 (NVD)

EPSS

0.00005

KEV

nein

Aktivitäten

very low

Sektor

Finance, Agriculture, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-1997
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-1997
CVE Details	https://www.cvedetails.com/cve/CVE-2026-1997/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!