Search criteria
6 vulnerabilities found for laserjet_enterprise_flow_mfp_m525_firmware by hp
CVE-2021-3942 (GCVE-0-2021-3942)
Vulnerability from nvd – Published: 2022-11-22 23:07 – Updated: 2025-04-25 20:52
VLAI?
Summary
Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR.
Severity ?
9.8 (Critical)
CWE
- n/a
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| HP Inc. | HP Print products and Digital Sending products |
Affected:
See HP Security Bulletin reference for affected versions.
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T17:09:09.705Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2021-3942",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-25T20:51:16.365911Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-119",
"description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-04-25T20:52:47.519Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "HP Print products and Digital Sending products",
"vendor": "HP Inc.",
"versions": [
{
"status": "affected",
"version": "See HP Security Bulletin reference for affected versions."
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-12-12T12:11:04.548Z",
"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"shortName": "hp"
},
"references": [
{
"url": "https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780"
}
],
"x_generator": {
"engine": "cveClient/1.0.13"
}
}
},
"cveMetadata": {
"assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"assignerShortName": "hp",
"cveId": "CVE-2021-3942",
"datePublished": "2022-11-22T23:07:47.320Z",
"dateReserved": "2021-11-09T21:58:12.461Z",
"dateUpdated": "2025-04-25T20:52:47.519Z",
"requesterUserId": "e0158710-d811-4b94-9318-6cef34bebe03",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-28419 (GCVE-0-2020-28419)
Vulnerability from nvd – Published: 2021-11-09 18:01 – Updated: 2024-08-04 16:33
VLAI?
Summary
During installation with certain driver software or application packages an arbitrary code execution could occur.
Severity ?
No CVSS data available.
CWE
- Arbitrary code execution
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | HP LaserJet Printer; HP LaserJet Pro Printer; HP PageWide Printer; HP PageWide Pro Printer; HP inkjet Printer; HP OfficeJet Printer |
Affected:
before 61.111.01.9108
Affected: before 8.0.13284.929 Affected: before 11.0.19232.882 Affected: before 52.1.4899 Affected: before 14.0.19241.351 Affected: before 14.0.19232.485 Affected: before 10.0.16007.5 Affected: before 9.0.15316.203 Affected: before 11.0.16058.821 Affected: before 50.1.4584 Affected: before 16.0.19235.653 Affected: before 16.0.19233.658 Affected: before 10.0.15324.194 Affected: before 10.0.15324.199 Affected: before 49.1.4431 Affected: before 43.2.2509 Affected: before 49.1.4424 Affected: before 50.1.4533 Affected: before 44.7.2713 Affected: before 44.6.2710 Affected: before 14.0.15311.432 Affected: before 16.0.19117.636 Affected: before 15.0.15322.1207 Affected: ... |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T16:33:59.136Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.hp.com/us-en/document/c07058567"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "HP LaserJet Printer; HP LaserJet Pro Printer; HP PageWide Printer; HP PageWide Pro Printer; HP inkjet Printer; HP OfficeJet Printer",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "before 61.111.01.9108"
},
{
"status": "affected",
"version": "before 8.0.13284.929"
},
{
"status": "affected",
"version": "before 11.0.19232.882"
},
{
"status": "affected",
"version": "before 52.1.4899"
},
{
"status": "affected",
"version": "before 14.0.19241.351"
},
{
"status": "affected",
"version": "before 14.0.19232.485"
},
{
"status": "affected",
"version": "before 10.0.16007.5"
},
{
"status": "affected",
"version": "before 9.0.15316.203"
},
{
"status": "affected",
"version": "before 11.0.16058.821"
},
{
"status": "affected",
"version": "before 50.1.4584"
},
{
"status": "affected",
"version": "before 16.0.19235.653"
},
{
"status": "affected",
"version": "before 16.0.19233.658"
},
{
"status": "affected",
"version": "before 10.0.15324.194"
},
{
"status": "affected",
"version": "before 10.0.15324.199"
},
{
"status": "affected",
"version": "before 49.1.4431"
},
{
"status": "affected",
"version": "before 43.2.2509"
},
{
"status": "affected",
"version": "before 49.1.4424"
},
{
"status": "affected",
"version": "before 50.1.4533"
},
{
"status": "affected",
"version": "before 44.7.2713"
},
{
"status": "affected",
"version": "before 44.6.2710"
},
{
"status": "affected",
"version": "before 14.0.15311.432"
},
{
"status": "affected",
"version": "before 16.0.19117.636"
},
{
"status": "affected",
"version": "before 15.0.15322.1207"
},
{
"status": "affected",
"version": "..."
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "During installation with certain driver software or application packages an arbitrary code execution could occur."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Arbitrary code execution",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-09T18:01:41",
"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"shortName": "hp"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.hp.com/us-en/document/c07058567"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "hp-security-alert@hp.com",
"ID": "CVE-2020-28419",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "HP LaserJet Printer; HP LaserJet Pro Printer; HP PageWide Printer; HP PageWide Pro Printer; HP inkjet Printer; HP OfficeJet Printer",
"version": {
"version_data": [
{
"version_value": "before 61.111.01.9108"
},
{
"version_value": "before 8.0.13284.929"
},
{
"version_value": "before 11.0.19232.882"
},
{
"version_value": "before 52.1.4899"
},
{
"version_value": "before 14.0.19241.351"
},
{
"version_value": "before 14.0.19232.485"
},
{
"version_value": "before 10.0.16007.5"
},
{
"version_value": "before 9.0.15316.203"
},
{
"version_value": "before 11.0.16058.821"
},
{
"version_value": "before 50.1.4584"
},
{
"version_value": "before 16.0.19235.653"
},
{
"version_value": "before 16.0.19233.658"
},
{
"version_value": "before 10.0.15324.194"
},
{
"version_value": "before 10.0.15324.199"
},
{
"version_value": "before 49.1.4431"
},
{
"version_value": "before 43.2.2509"
},
{
"version_value": "before 49.1.4424"
},
{
"version_value": "before 50.1.4533"
},
{
"version_value": "before 44.7.2713"
},
{
"version_value": "before 44.6.2710"
},
{
"version_value": "before 14.0.15311.432"
},
{
"version_value": "before 16.0.19117.636"
},
{
"version_value": "before 15.0.15322.1207"
},
{
"version_value": "..."
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "During installation with certain driver software or application packages an arbitrary code execution could occur."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Arbitrary code execution"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.hp.com/us-en/document/c07058567",
"refsource": "MISC",
"url": "https://support.hp.com/us-en/document/c07058567"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"assignerShortName": "hp",
"cveId": "CVE-2020-28419",
"datePublished": "2021-11-09T18:01:41",
"dateReserved": "2020-11-12T00:00:00",
"dateUpdated": "2024-08-04T16:33:59.136Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-6318 (GCVE-0-2019-6318)
Vulnerability from nvd – Published: 2019-04-11 14:45 – Updated: 2024-08-04 20:16
VLAI?
Summary
HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code.
Severity ?
No CVSS data available.
CWE
- Execution of arbitrary code.
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| HP | HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers |
Affected:
affecting multiple firmware versions
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T20:16:24.822Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.hp.com/us-en/document/c06265454"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers",
"vendor": "HP",
"versions": [
{
"status": "affected",
"version": "affecting multiple firmware versions"
}
]
}
],
"datePublic": "2019-03-14T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Execution of arbitrary code.",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-04-11T14:45:48",
"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"shortName": "hp"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.hp.com/us-en/document/c06265454"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "hp-security-alert@hp.com",
"ID": "CVE-2019-6318",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers",
"version": {
"version_data": [
{
"version_value": "affecting multiple firmware versions"
}
]
}
}
]
},
"vendor_name": "HP"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Execution of arbitrary code."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.hp.com/us-en/document/c06265454",
"refsource": "CONFIRM",
"url": "https://support.hp.com/us-en/document/c06265454"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"assignerShortName": "hp",
"cveId": "CVE-2019-6318",
"datePublished": "2019-04-11T14:45:48",
"dateReserved": "2019-01-15T00:00:00",
"dateUpdated": "2024-08-04T20:16:24.822Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-3942 (GCVE-0-2021-3942)
Vulnerability from cvelistv5 – Published: 2022-11-22 23:07 – Updated: 2025-04-25 20:52
VLAI?
Summary
Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR.
Severity ?
9.8 (Critical)
CWE
- n/a
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| HP Inc. | HP Print products and Digital Sending products |
Affected:
See HP Security Bulletin reference for affected versions.
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T17:09:09.705Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2021-3942",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-25T20:51:16.365911Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-119",
"description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-04-25T20:52:47.519Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "HP Print products and Digital Sending products",
"vendor": "HP Inc.",
"versions": [
{
"status": "affected",
"version": "See HP Security Bulletin reference for affected versions."
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-12-12T12:11:04.548Z",
"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"shortName": "hp"
},
"references": [
{
"url": "https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780"
}
],
"x_generator": {
"engine": "cveClient/1.0.13"
}
}
},
"cveMetadata": {
"assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"assignerShortName": "hp",
"cveId": "CVE-2021-3942",
"datePublished": "2022-11-22T23:07:47.320Z",
"dateReserved": "2021-11-09T21:58:12.461Z",
"dateUpdated": "2025-04-25T20:52:47.519Z",
"requesterUserId": "e0158710-d811-4b94-9318-6cef34bebe03",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-28419 (GCVE-0-2020-28419)
Vulnerability from cvelistv5 – Published: 2021-11-09 18:01 – Updated: 2024-08-04 16:33
VLAI?
Summary
During installation with certain driver software or application packages an arbitrary code execution could occur.
Severity ?
No CVSS data available.
CWE
- Arbitrary code execution
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | HP LaserJet Printer; HP LaserJet Pro Printer; HP PageWide Printer; HP PageWide Pro Printer; HP inkjet Printer; HP OfficeJet Printer |
Affected:
before 61.111.01.9108
Affected: before 8.0.13284.929 Affected: before 11.0.19232.882 Affected: before 52.1.4899 Affected: before 14.0.19241.351 Affected: before 14.0.19232.485 Affected: before 10.0.16007.5 Affected: before 9.0.15316.203 Affected: before 11.0.16058.821 Affected: before 50.1.4584 Affected: before 16.0.19235.653 Affected: before 16.0.19233.658 Affected: before 10.0.15324.194 Affected: before 10.0.15324.199 Affected: before 49.1.4431 Affected: before 43.2.2509 Affected: before 49.1.4424 Affected: before 50.1.4533 Affected: before 44.7.2713 Affected: before 44.6.2710 Affected: before 14.0.15311.432 Affected: before 16.0.19117.636 Affected: before 15.0.15322.1207 Affected: ... |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T16:33:59.136Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.hp.com/us-en/document/c07058567"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "HP LaserJet Printer; HP LaserJet Pro Printer; HP PageWide Printer; HP PageWide Pro Printer; HP inkjet Printer; HP OfficeJet Printer",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "before 61.111.01.9108"
},
{
"status": "affected",
"version": "before 8.0.13284.929"
},
{
"status": "affected",
"version": "before 11.0.19232.882"
},
{
"status": "affected",
"version": "before 52.1.4899"
},
{
"status": "affected",
"version": "before 14.0.19241.351"
},
{
"status": "affected",
"version": "before 14.0.19232.485"
},
{
"status": "affected",
"version": "before 10.0.16007.5"
},
{
"status": "affected",
"version": "before 9.0.15316.203"
},
{
"status": "affected",
"version": "before 11.0.16058.821"
},
{
"status": "affected",
"version": "before 50.1.4584"
},
{
"status": "affected",
"version": "before 16.0.19235.653"
},
{
"status": "affected",
"version": "before 16.0.19233.658"
},
{
"status": "affected",
"version": "before 10.0.15324.194"
},
{
"status": "affected",
"version": "before 10.0.15324.199"
},
{
"status": "affected",
"version": "before 49.1.4431"
},
{
"status": "affected",
"version": "before 43.2.2509"
},
{
"status": "affected",
"version": "before 49.1.4424"
},
{
"status": "affected",
"version": "before 50.1.4533"
},
{
"status": "affected",
"version": "before 44.7.2713"
},
{
"status": "affected",
"version": "before 44.6.2710"
},
{
"status": "affected",
"version": "before 14.0.15311.432"
},
{
"status": "affected",
"version": "before 16.0.19117.636"
},
{
"status": "affected",
"version": "before 15.0.15322.1207"
},
{
"status": "affected",
"version": "..."
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "During installation with certain driver software or application packages an arbitrary code execution could occur."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Arbitrary code execution",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-09T18:01:41",
"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"shortName": "hp"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.hp.com/us-en/document/c07058567"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "hp-security-alert@hp.com",
"ID": "CVE-2020-28419",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "HP LaserJet Printer; HP LaserJet Pro Printer; HP PageWide Printer; HP PageWide Pro Printer; HP inkjet Printer; HP OfficeJet Printer",
"version": {
"version_data": [
{
"version_value": "before 61.111.01.9108"
},
{
"version_value": "before 8.0.13284.929"
},
{
"version_value": "before 11.0.19232.882"
},
{
"version_value": "before 52.1.4899"
},
{
"version_value": "before 14.0.19241.351"
},
{
"version_value": "before 14.0.19232.485"
},
{
"version_value": "before 10.0.16007.5"
},
{
"version_value": "before 9.0.15316.203"
},
{
"version_value": "before 11.0.16058.821"
},
{
"version_value": "before 50.1.4584"
},
{
"version_value": "before 16.0.19235.653"
},
{
"version_value": "before 16.0.19233.658"
},
{
"version_value": "before 10.0.15324.194"
},
{
"version_value": "before 10.0.15324.199"
},
{
"version_value": "before 49.1.4431"
},
{
"version_value": "before 43.2.2509"
},
{
"version_value": "before 49.1.4424"
},
{
"version_value": "before 50.1.4533"
},
{
"version_value": "before 44.7.2713"
},
{
"version_value": "before 44.6.2710"
},
{
"version_value": "before 14.0.15311.432"
},
{
"version_value": "before 16.0.19117.636"
},
{
"version_value": "before 15.0.15322.1207"
},
{
"version_value": "..."
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "During installation with certain driver software or application packages an arbitrary code execution could occur."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Arbitrary code execution"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.hp.com/us-en/document/c07058567",
"refsource": "MISC",
"url": "https://support.hp.com/us-en/document/c07058567"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"assignerShortName": "hp",
"cveId": "CVE-2020-28419",
"datePublished": "2021-11-09T18:01:41",
"dateReserved": "2020-11-12T00:00:00",
"dateUpdated": "2024-08-04T16:33:59.136Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-6318 (GCVE-0-2019-6318)
Vulnerability from cvelistv5 – Published: 2019-04-11 14:45 – Updated: 2024-08-04 20:16
VLAI?
Summary
HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code.
Severity ?
No CVSS data available.
CWE
- Execution of arbitrary code.
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| HP | HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers |
Affected:
affecting multiple firmware versions
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T20:16:24.822Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.hp.com/us-en/document/c06265454"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers",
"vendor": "HP",
"versions": [
{
"status": "affected",
"version": "affecting multiple firmware versions"
}
]
}
],
"datePublic": "2019-03-14T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Execution of arbitrary code.",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-04-11T14:45:48",
"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"shortName": "hp"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.hp.com/us-en/document/c06265454"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "hp-security-alert@hp.com",
"ID": "CVE-2019-6318",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers",
"version": {
"version_data": [
{
"version_value": "affecting multiple firmware versions"
}
]
}
}
]
},
"vendor_name": "HP"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Execution of arbitrary code."
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.hp.com/us-en/document/c06265454",
"refsource": "CONFIRM",
"url": "https://support.hp.com/us-en/document/c06265454"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"assignerShortName": "hp",
"cveId": "CVE-2019-6318",
"datePublished": "2019-04-11T14:45:48",
"dateReserved": "2019-01-15T00:00:00",
"dateUpdated": "2024-08-04T20:16:24.822Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}