Search

Find a vulnerability

Search criteria

    14 vulnerabilities found for pagewide_pro_577dw_d3q21a_firmware by hp

    CVE-2022-2794 (GCVE-0-2022-2794)

    Vulnerability from nvd – Published: 2022-11-18 20:48 – Updated: 2025-04-29 18:36
    VLAI
    Summary
    Certain HP PageWide Pro Printers may be vulnerable to a potential denial of service attack.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • n/a
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    hp
    Impacted products
    Vendor Product Version
    HP Inc. Certain HP PageWide Pro printers Affected: See HP Security Bulletin reference for affected versions.
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T00:46:04.581Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_6720386-6720411-16/hpsbpi03807"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-2794",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-04-29T18:36:29.717227Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-400",
                    "description": "CWE-400 Uncontrolled Resource Consumption",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-04-29T18:36:46.662Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Certain HP PageWide Pro printers",
              "vendor": "HP Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See HP Security Bulletin reference for affected versions."
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP PageWide Pro Printers may be vulnerable to a potential denial of service attack."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-12-12T12:11:04.548Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "url": "https://support.hp.com/us-en/document/ish_6720386-6720411-16/hpsbpi03807"
            }
          ],
          "x_generator": {
            "engine": "cveClient/1.0.13"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2022-2794",
        "datePublished": "2022-11-18T20:48:49.100Z",
        "dateReserved": "2022-08-11T21:47:47.246Z",
        "dateUpdated": "2025-04-29T18:36:46.662Z",
        "requesterUserId": "e0158710-d811-4b94-9318-6cef34bebe03",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-3942 (GCVE-0-2021-3942)

    Vulnerability from nvd – Published: 2022-11-22 23:07 – Updated: 2025-04-25 20:52
    VLAI
    Summary
    Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • n/a
    • CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
    Assigner
    hp
    Impacted products
    Vendor Product Version
    HP Inc. HP Print products and Digital Sending products Affected: See HP Security Bulletin reference for affected versions.
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T17:09:09.705Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.8,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-3942",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-04-25T20:51:16.365911Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-119",
                    "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-04-25T20:52:47.519Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP Print products and Digital Sending products",
              "vendor": "HP Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See HP Security Bulletin reference for affected versions."
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-12-12T12:11:04.548Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "url": "https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780"
            }
          ],
          "x_generator": {
            "engine": "cveClient/1.0.13"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2021-3942",
        "datePublished": "2022-11-22T23:07:47.320Z",
        "dateReserved": "2021-11-09T21:58:12.461Z",
        "dateUpdated": "2025-04-25T20:52:47.519Z",
        "requesterUserId": "e0158710-d811-4b94-9318-6cef34bebe03",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24293 (GCVE-0-2022-24293)

    Vulnerability from nvd – Published: 2022-03-23 19:46 – Updated: 2024-08-03 04:07
    VLAI
    Summary
    Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
    Severity
    No CVSS data available.
    CWE
    • Information disclosure, Denial of service, Buffer overflow
    Assigner
    hp
    References
    Impacted products
    Vendor Product Version
    n/a HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers Affected: before 002_2208A
    Affected: before 2205D
    Affected: before 001.2210B
    Affected: before 001.2207C
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:07:02.315Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 002_2208A"
                },
                {
                  "status": "affected",
                  "version": "before 2205D"
                },
                {
                  "status": "affected",
                  "version": "before 001.2210B"
                },
                {
                  "status": "affected",
                  "version": "before 001.2207C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information disclosure, Denial of service, Buffer overflow",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-03-23T19:46:19.000Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "hp-security-alert@hp.com",
              "ID": "CVE-2022-24293",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 002_2208A"
                              },
                              {
                                "version_value": "before 2205D"
                              },
                              {
                                "version_value": "before 001.2210B"
                              },
                              {
                                "version_value": "before 001.2207C"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Information disclosure, Denial of service, Buffer overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/ish_5950417-5950443-16",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2022-24293",
        "datePublished": "2022-03-23T19:46:19.000Z",
        "dateReserved": "2022-02-01T00:00:00.000Z",
        "dateUpdated": "2024-08-03T04:07:02.315Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24292 (GCVE-0-2022-24292)

    Vulnerability from nvd – Published: 2022-03-23 19:46 – Updated: 2024-08-03 04:07
    VLAI
    Summary
    Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
    Severity
    No CVSS data available.
    CWE
    • Information disclosure, Denial of service, Buffer overflow
    Assigner
    hp
    References
    Impacted products
    Vendor Product Version
    n/a HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers Affected: before 002_2208A
    Affected: before 2205D
    Affected: before 001.2210B
    Affected: before 001.2207C
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:07:02.453Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 002_2208A"
                },
                {
                  "status": "affected",
                  "version": "before 2205D"
                },
                {
                  "status": "affected",
                  "version": "before 001.2210B"
                },
                {
                  "status": "affected",
                  "version": "before 001.2207C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information disclosure, Denial of service, Buffer overflow",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-03-23T19:46:17.000Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "hp-security-alert@hp.com",
              "ID": "CVE-2022-24292",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 002_2208A"
                              },
                              {
                                "version_value": "before 2205D"
                              },
                              {
                                "version_value": "before 001.2210B"
                              },
                              {
                                "version_value": "before 001.2207C"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Information disclosure, Denial of service, Buffer overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/ish_5950417-5950443-16",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2022-24292",
        "datePublished": "2022-03-23T19:46:17.000Z",
        "dateReserved": "2022-02-01T00:00:00.000Z",
        "dateUpdated": "2024-08-03T04:07:02.453Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24291 (GCVE-0-2022-24291)

    Vulnerability from nvd – Published: 2022-03-23 19:46 – Updated: 2024-08-03 04:07
    VLAI
    Summary
    Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
    Severity
    No CVSS data available.
    CWE
    • Information disclosure, Denial of service, Buffer overflow
    Assigner
    hp
    References
    Impacted products
    Vendor Product Version
    n/a HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers Affected: before 002_2208A
    Affected: before 2205D
    Affected: before 001.2210B
    Affected: before 001.2207C
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:07:02.376Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 002_2208A"
                },
                {
                  "status": "affected",
                  "version": "before 2205D"
                },
                {
                  "status": "affected",
                  "version": "before 001.2210B"
                },
                {
                  "status": "affected",
                  "version": "before 001.2207C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information disclosure, Denial of service, Buffer overflow",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-03-23T19:46:18.000Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "hp-security-alert@hp.com",
              "ID": "CVE-2022-24291",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 002_2208A"
                              },
                              {
                                "version_value": "before 2205D"
                              },
                              {
                                "version_value": "before 001.2210B"
                              },
                              {
                                "version_value": "before 001.2207C"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Information disclosure, Denial of service, Buffer overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/ish_5950417-5950443-16",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2022-24291",
        "datePublished": "2022-03-23T19:46:18.000Z",
        "dateReserved": "2022-02-01T00:00:00.000Z",
        "dateUpdated": "2024-08-03T04:07:02.376Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-16240 (GCVE-0-2019-16240)

    Vulnerability from nvd – Published: 2021-11-09 14:37 – Updated: 2024-08-05 01:10
    VLAI
    Summary
    A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T01:10:41.632Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/c06458150"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-11-09T14:37:36.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/c06458150"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2019-16240",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/c06458150",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/c06458150"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2019-16240",
        "datePublished": "2021-11-09T14:37:36.000Z",
        "dateReserved": "2019-09-11T00:00:00.000Z",
        "dateUpdated": "2024-08-05T01:10:41.632Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-28416 (GCVE-0-2020-28416)

    Vulnerability from nvd – Published: 2021-11-03 19:02 – Updated: 2024-08-04 16:33
    VLAI
    Summary
    HP has identified a security vulnerability with the I.R.I.S. OCR (Optical Character Recognition) software available with HP PageWide and OfficeJet printer software installations that could potentially allow unauthorized local code execution.
    Severity
    No CVSS data available.
    CWE
    • unauthorized local code execution
    Assigner
    hp
    References
    Impacted products
    Vendor Product Version
    n/a HP OfficeJet Printer; HP PageWide Printer Affected: before 33.1.74
    Affected: before 35.0.72
    Affected: before 38.8.1942
    Affected: before 38.9.1948
    Affected: before 39.6.1999
    Affected: before 39.6.2002
    Affected: before 40.11.1122
    Affected: before 40.11.1148
    Affected: before 40.11.1150
    Affected: before 40.12.1161
    Affected: before 40.13.1176
    Affected: before 40.7.1094
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T16:33:59.102Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/c07051163"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP OfficeJet Printer; HP PageWide Printer",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 33.1.74"
                },
                {
                  "status": "affected",
                  "version": "before 35.0.72"
                },
                {
                  "status": "affected",
                  "version": "before 38.8.1942"
                },
                {
                  "status": "affected",
                  "version": "before 38.9.1948"
                },
                {
                  "status": "affected",
                  "version": "before 39.6.1999"
                },
                {
                  "status": "affected",
                  "version": "before 39.6.2002"
                },
                {
                  "status": "affected",
                  "version": "before 40.11.1122"
                },
                {
                  "status": "affected",
                  "version": "before 40.11.1148"
                },
                {
                  "status": "affected",
                  "version": "before 40.11.1150"
                },
                {
                  "status": "affected",
                  "version": "before 40.12.1161"
                },
                {
                  "status": "affected",
                  "version": "before 40.13.1176"
                },
                {
                  "status": "affected",
                  "version": "before 40.7.1094"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "HP has identified a security vulnerability with the I.R.I.S. OCR (Optical Character Recognition) software available with HP PageWide and OfficeJet printer software installations that could potentially allow unauthorized local code execution."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "unauthorized local code execution",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-11-03T19:02:37.000Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/c07051163"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "hp-security-alert@hp.com",
              "ID": "CVE-2020-28416",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HP OfficeJet Printer; HP PageWide Printer",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 33.1.74"
                              },
                              {
                                "version_value": "before 35.0.72"
                              },
                              {
                                "version_value": "before 38.8.1942"
                              },
                              {
                                "version_value": "before 38.9.1948"
                              },
                              {
                                "version_value": "before 39.6.1999"
                              },
                              {
                                "version_value": "before 39.6.2002"
                              },
                              {
                                "version_value": "before 40.11.1122"
                              },
                              {
                                "version_value": "before 40.11.1148"
                              },
                              {
                                "version_value": "before 40.11.1150"
                              },
                              {
                                "version_value": "before 40.12.1161"
                              },
                              {
                                "version_value": "before 40.13.1176"
                              },
                              {
                                "version_value": "before 40.7.1094"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "HP has identified a security vulnerability with the I.R.I.S. OCR (Optical Character Recognition) software available with HP PageWide and OfficeJet printer software installations that could potentially allow unauthorized local code execution."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "unauthorized local code execution"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/c07051163",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/c07051163"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2020-28416",
        "datePublished": "2021-11-03T19:02:37.000Z",
        "dateReserved": "2020-11-12T00:00:00.000Z",
        "dateUpdated": "2024-08-04T16:33:59.102Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-3942 (GCVE-0-2021-3942)

    Vulnerability from cvelistv5 – Published: 2022-11-22 23:07 – Updated: 2025-04-25 20:52
    VLAI
    Summary
    Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • n/a
    • CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
    Assigner
    hp
    Impacted products
    Vendor Product Version
    HP Inc. HP Print products and Digital Sending products Affected: See HP Security Bulletin reference for affected versions.
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T17:09:09.705Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.8,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-3942",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-04-25T20:51:16.365911Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-119",
                    "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-04-25T20:52:47.519Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP Print products and Digital Sending products",
              "vendor": "HP Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See HP Security Bulletin reference for affected versions."
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-12-12T12:11:04.548Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "url": "https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780"
            }
          ],
          "x_generator": {
            "engine": "cveClient/1.0.13"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2021-3942",
        "datePublished": "2022-11-22T23:07:47.320Z",
        "dateReserved": "2021-11-09T21:58:12.461Z",
        "dateUpdated": "2025-04-25T20:52:47.519Z",
        "requesterUserId": "e0158710-d811-4b94-9318-6cef34bebe03",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-2794 (GCVE-0-2022-2794)

    Vulnerability from cvelistv5 – Published: 2022-11-18 20:48 – Updated: 2025-04-29 18:36
    VLAI
    Summary
    Certain HP PageWide Pro Printers may be vulnerable to a potential denial of service attack.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • n/a
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    hp
    Impacted products
    Vendor Product Version
    HP Inc. Certain HP PageWide Pro printers Affected: See HP Security Bulletin reference for affected versions.
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T00:46:04.581Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_6720386-6720411-16/hpsbpi03807"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-2794",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-04-29T18:36:29.717227Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-400",
                    "description": "CWE-400 Uncontrolled Resource Consumption",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-04-29T18:36:46.662Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Certain HP PageWide Pro printers",
              "vendor": "HP Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "See HP Security Bulletin reference for affected versions."
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP PageWide Pro Printers may be vulnerable to a potential denial of service attack."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-12-12T12:11:04.548Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "url": "https://support.hp.com/us-en/document/ish_6720386-6720411-16/hpsbpi03807"
            }
          ],
          "x_generator": {
            "engine": "cveClient/1.0.13"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2022-2794",
        "datePublished": "2022-11-18T20:48:49.100Z",
        "dateReserved": "2022-08-11T21:47:47.246Z",
        "dateUpdated": "2025-04-29T18:36:46.662Z",
        "requesterUserId": "e0158710-d811-4b94-9318-6cef34bebe03",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24293 (GCVE-0-2022-24293)

    Vulnerability from cvelistv5 – Published: 2022-03-23 19:46 – Updated: 2024-08-03 04:07
    VLAI
    Summary
    Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
    Severity
    No CVSS data available.
    CWE
    • Information disclosure, Denial of service, Buffer overflow
    Assigner
    hp
    References
    Impacted products
    Vendor Product Version
    n/a HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers Affected: before 002_2208A
    Affected: before 2205D
    Affected: before 001.2210B
    Affected: before 001.2207C
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:07:02.315Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 002_2208A"
                },
                {
                  "status": "affected",
                  "version": "before 2205D"
                },
                {
                  "status": "affected",
                  "version": "before 001.2210B"
                },
                {
                  "status": "affected",
                  "version": "before 001.2207C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information disclosure, Denial of service, Buffer overflow",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-03-23T19:46:19.000Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "hp-security-alert@hp.com",
              "ID": "CVE-2022-24293",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 002_2208A"
                              },
                              {
                                "version_value": "before 2205D"
                              },
                              {
                                "version_value": "before 001.2210B"
                              },
                              {
                                "version_value": "before 001.2207C"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Information disclosure, Denial of service, Buffer overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/ish_5950417-5950443-16",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2022-24293",
        "datePublished": "2022-03-23T19:46:19.000Z",
        "dateReserved": "2022-02-01T00:00:00.000Z",
        "dateUpdated": "2024-08-03T04:07:02.315Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24291 (GCVE-0-2022-24291)

    Vulnerability from cvelistv5 – Published: 2022-03-23 19:46 – Updated: 2024-08-03 04:07
    VLAI
    Summary
    Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
    Severity
    No CVSS data available.
    CWE
    • Information disclosure, Denial of service, Buffer overflow
    Assigner
    hp
    References
    Impacted products
    Vendor Product Version
    n/a HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers Affected: before 002_2208A
    Affected: before 2205D
    Affected: before 001.2210B
    Affected: before 001.2207C
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:07:02.376Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 002_2208A"
                },
                {
                  "status": "affected",
                  "version": "before 2205D"
                },
                {
                  "status": "affected",
                  "version": "before 001.2210B"
                },
                {
                  "status": "affected",
                  "version": "before 001.2207C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information disclosure, Denial of service, Buffer overflow",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-03-23T19:46:18.000Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "hp-security-alert@hp.com",
              "ID": "CVE-2022-24291",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 002_2208A"
                              },
                              {
                                "version_value": "before 2205D"
                              },
                              {
                                "version_value": "before 001.2210B"
                              },
                              {
                                "version_value": "before 001.2207C"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Information disclosure, Denial of service, Buffer overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/ish_5950417-5950443-16",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2022-24291",
        "datePublished": "2022-03-23T19:46:18.000Z",
        "dateReserved": "2022-02-01T00:00:00.000Z",
        "dateUpdated": "2024-08-03T04:07:02.376Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24292 (GCVE-0-2022-24292)

    Vulnerability from cvelistv5 – Published: 2022-03-23 19:46 – Updated: 2024-08-03 04:07
    VLAI
    Summary
    Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
    Severity
    No CVSS data available.
    CWE
    • Information disclosure, Denial of service, Buffer overflow
    Assigner
    hp
    References
    Impacted products
    Vendor Product Version
    n/a HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers Affected: before 002_2208A
    Affected: before 2205D
    Affected: before 001.2210B
    Affected: before 001.2207C
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:07:02.453Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 002_2208A"
                },
                {
                  "status": "affected",
                  "version": "before 2205D"
                },
                {
                  "status": "affected",
                  "version": "before 001.2210B"
                },
                {
                  "status": "affected",
                  "version": "before 001.2207C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information disclosure, Denial of service, Buffer overflow",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-03-23T19:46:17.000Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "hp-security-alert@hp.com",
              "ID": "CVE-2022-24292",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HP LaserJet Pro Printers; HP Pagewide Pro Printers; HP Officejet Printers",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 002_2208A"
                              },
                              {
                                "version_value": "before 2205D"
                              },
                              {
                                "version_value": "before 001.2210B"
                              },
                              {
                                "version_value": "before 001.2207C"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Information disclosure, Denial of service, Buffer overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/ish_5950417-5950443-16",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/ish_5950417-5950443-16"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2022-24292",
        "datePublished": "2022-03-23T19:46:17.000Z",
        "dateReserved": "2022-02-01T00:00:00.000Z",
        "dateUpdated": "2024-08-03T04:07:02.453Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-16240 (GCVE-0-2019-16240)

    Vulnerability from cvelistv5 – Published: 2021-11-09 14:37 – Updated: 2024-08-05 01:10
    VLAI
    Summary
    A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T01:10:41.632Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/c06458150"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-11-09T14:37:36.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/c06458150"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2019-16240",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/c06458150",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/c06458150"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2019-16240",
        "datePublished": "2021-11-09T14:37:36.000Z",
        "dateReserved": "2019-09-11T00:00:00.000Z",
        "dateUpdated": "2024-08-05T01:10:41.632Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-28416 (GCVE-0-2020-28416)

    Vulnerability from cvelistv5 – Published: 2021-11-03 19:02 – Updated: 2024-08-04 16:33
    VLAI
    Summary
    HP has identified a security vulnerability with the I.R.I.S. OCR (Optical Character Recognition) software available with HP PageWide and OfficeJet printer software installations that could potentially allow unauthorized local code execution.
    Severity
    No CVSS data available.
    CWE
    • unauthorized local code execution
    Assigner
    hp
    References
    Impacted products
    Vendor Product Version
    n/a HP OfficeJet Printer; HP PageWide Printer Affected: before 33.1.74
    Affected: before 35.0.72
    Affected: before 38.8.1942
    Affected: before 38.9.1948
    Affected: before 39.6.1999
    Affected: before 39.6.2002
    Affected: before 40.11.1122
    Affected: before 40.11.1148
    Affected: before 40.11.1150
    Affected: before 40.12.1161
    Affected: before 40.13.1176
    Affected: before 40.7.1094
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T16:33:59.102Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://support.hp.com/us-en/document/c07051163"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HP OfficeJet Printer; HP PageWide Printer",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before 33.1.74"
                },
                {
                  "status": "affected",
                  "version": "before 35.0.72"
                },
                {
                  "status": "affected",
                  "version": "before 38.8.1942"
                },
                {
                  "status": "affected",
                  "version": "before 38.9.1948"
                },
                {
                  "status": "affected",
                  "version": "before 39.6.1999"
                },
                {
                  "status": "affected",
                  "version": "before 39.6.2002"
                },
                {
                  "status": "affected",
                  "version": "before 40.11.1122"
                },
                {
                  "status": "affected",
                  "version": "before 40.11.1148"
                },
                {
                  "status": "affected",
                  "version": "before 40.11.1150"
                },
                {
                  "status": "affected",
                  "version": "before 40.12.1161"
                },
                {
                  "status": "affected",
                  "version": "before 40.13.1176"
                },
                {
                  "status": "affected",
                  "version": "before 40.7.1094"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "HP has identified a security vulnerability with the I.R.I.S. OCR (Optical Character Recognition) software available with HP PageWide and OfficeJet printer software installations that could potentially allow unauthorized local code execution."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "unauthorized local code execution",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-11-03T19:02:37.000Z",
            "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
            "shortName": "hp"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://support.hp.com/us-en/document/c07051163"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "hp-security-alert@hp.com",
              "ID": "CVE-2020-28416",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HP OfficeJet Printer; HP PageWide Printer",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before 33.1.74"
                              },
                              {
                                "version_value": "before 35.0.72"
                              },
                              {
                                "version_value": "before 38.8.1942"
                              },
                              {
                                "version_value": "before 38.9.1948"
                              },
                              {
                                "version_value": "before 39.6.1999"
                              },
                              {
                                "version_value": "before 39.6.2002"
                              },
                              {
                                "version_value": "before 40.11.1122"
                              },
                              {
                                "version_value": "before 40.11.1148"
                              },
                              {
                                "version_value": "before 40.11.1150"
                              },
                              {
                                "version_value": "before 40.12.1161"
                              },
                              {
                                "version_value": "before 40.13.1176"
                              },
                              {
                                "version_value": "before 40.7.1094"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "HP has identified a security vulnerability with the I.R.I.S. OCR (Optical Character Recognition) software available with HP PageWide and OfficeJet printer software installations that could potentially allow unauthorized local code execution."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "unauthorized local code execution"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.hp.com/us-en/document/c07051163",
                  "refsource": "MISC",
                  "url": "https://support.hp.com/us-en/document/c07051163"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "assignerShortName": "hp",
        "cveId": "CVE-2020-28416",
        "datePublished": "2021-11-03T19:02:37.000Z",
        "dateReserved": "2020-11-12T00:00:00.000Z",
        "dateUpdated": "2024-08-04T16:33:59.102Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }