CVSS: 6.1EPSS: 0%CPEs: 1133EXPL: 0CVE-2023-5113 – Certain HP Enterprise LaserJet, LaserJet Managed printers - Potential denial of service, potential Cross Site Scripting (XSS)
https://notcve.org/view.php?id=CVE-2023-5113
Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI. Certain HP Enterprise LaserJet and HP LaserJet Managed Printers son potencialmente vulnerables a la denegación de servicio debido a la solicitud de WS-Print y posibles inyecciones de Cross Site Scripting (XSS) a través de jQuery-UI. • https://support.hp.com/us-en/document/ish_9365285-9365309-16 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1914EXPL: 0CVE-2023-1329
https://notcve.org/view.php?id=CVE-2023-1329
A potential security vulnerability has been identified for certain HP multifunction printers (MFPs). The vulnerability may lead to Buffer Overflow and/or Remote Code Execution when running HP Workpath solutions on potentially affected products. • https://support.hp.com/us-en/document/ish_8585737-8585769-16/hpsbpi03849 •
CVSS: 9.8EPSS: 0%CPEs: 5821EXPL: 0CVE-2021-3942
https://notcve.org/view.php?id=CVE-2021-3942
Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR. Ciertos productos HP Print y productos Digital Sending pueden ser vulnerables a una posible ejecución remota de código y desbordamiento de búfer con el uso de resolución de nombres de multidifusión local de enlace o LLMNR. • https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 396EXPL: 0CVE-2019-6318
https://notcve.org/view.php?id=CVE-2019-6318
HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code. Los dispositivos de las impresoras HP LaserJet Enterprise, HP PageWide Enterprise, las impresoras administradas HP LaserJet, HP Officejet Enterprise presentan una vulnerabilidad en la comprobación de firma de paquete de solución insuficiente que potencialmente permite la ejecución de código arbitrario. • https://support.hp.com/us-en/document/c06265454 • CWE-347: Improper Verification of Cryptographic Signature •