Skip to main content

Key Management Errors

CVE-2015-0839

Severity High
Score 8.1/10

Summary

The hp-plugin utility in HP Linux Imaging and Printing (HPLIP) makes it easier for man-in-the-middle attackers to execute arbitrary code by leveraging use of a short GPG key id from a keyserver to verify print plugin downloads.

  • HIGH
  • NETWORK
  • HIGH
  • UNCHANGED
  • NONE
  • NONE
  • HIGH
  • HIGH

CWE-320 - Key Management Errors

Weaknesses in this category are related to errors in the management of cryptographic keys.

References

Advisory Timeline

  • Published