Unrated severityNVD Advisory· Published Dec 6, 2012· Updated Apr 29, 2026

CVE-2012-3272

Description

Cross-site scripting (XSS) vulnerability on the HP Color LaserJet CM3530 with firmware before 53.190.9, Color LaserJet CM60xx with firmware before 52.210.9, Color LaserJet CP3525 with firmware before 06.140.3 18, Color LaserJet CP4xxx with firmware before 07.120.6, Color LaserJet CP6015 with firmware before 04.160.3, LaserJet P3015 with firmware before 07.140.3, and LaserJet P4xxx with firmware before 04.170.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

HP/Color Laserjet Cm3530
cpe:2.3:h:hp:color_laserjet_cm3530:*:*:*:*:*:*:*:*
Range: <=53.190.8
HP/Color Laserjet Cm60xx
cpe:2.3:h:hp:color_laserjet_cm60xx:*:*:*:*:*:*:*:*
Range: <=53.190.8
HP/Color Laserjet Cp3525
cpe:2.3:h:hp:color_laserjet_cp3525:*:*:*:*:*:*:*:*
Range: <=06.140.3.17
HP/Color Laserjet Cp4xxx
cpe:2.3:h:hp:color_laserjet_cp4xxx:*:*:*:*:*:*:*:*
Range: <=07.120.5
HP/Color Laserjet Cp6015
cpe:2.3:h:hp:color_laserjet_cp6015:*:*:*:*:*:*:*:*
Range: <=04.160.2
HP/Laserjet P3015
cpe:2.3:h:hp:laserjet_p3015:*:*:*:*:*:*:*:*
Range: <=07.140.2
HP/Laserjet P4xxx
cpe:2.3:h:hp:laserjet_p4xxx:*:*:*:*:*:*:*:*
Range: <=04.170.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplaynvdVendor Advisory
www.securitytracker.com/idnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000