CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-9419 – Certain HP Print Products–Potential Remote Code Execution and/or Elevation of Privilege with the HP Smart Universal Printing Driver
https://notcve.org/view.php?id=CVE-2024-9419
Client / Server PCs with the HP Smart Universal Printing Driver installed are potentially vulnerable to Remote Code Execution and/or Elevation of Privilege. A client using the HP Smart Universal Printing Driver that sends a print job comprised of a malicious XPS file could potentially lead to Remote Code Execution and/or Elevation of Privilege on the PC. Los equipos cliente/servidor con el controlador de impresión universal inteligente de HP instalado son potencialmente vulnerables a la ejecución remota de código y/o la elevación de privilegios. Un cliente que utilice el controlador de impresión universal inteligente de HP que envíe un trabajo de impresión compuesto por un archivo XPS malicioso podría provocar la ejecución remota de código y/o la elevación de privilegios en el equipo. • https://support.hp.com/us-en/document/ish_11505949-11505972-16 • CWE-787: Out-of-bounds Write •
CVSS: 8.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-8733 – HP One Agent Software – Potential Privilege Escalation
https://notcve.org/view.php?id=CVE-2024-8733
A potential security vulnerability has been identified in the HP One Agent for certain HP PC products, which might allow for escalation of privilege. HP is releasing software updates to mitigate this potential vulnerability. • https://support.hp.com/us-en/document/ish_11270215-11270239-16 • CWE-426: Untrusted Search Path •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7720 – HP Security Manager - Potential Remote Code Execution
https://notcve.org/view.php?id=CVE-2024-7720
HP Security Manager is potentially vulnerable to Remote Code Execution as a result of code vulnerability within the product's solution open-source libraries. • https://support.hp.com/us-en/document/ish_11074404-11074432-16 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-4143 – Certain HP PC products using AMI BIOS – Buffer Overflow
https://notcve.org/view.php?id=CVE-2024-4143
A potential security vulnerability has been identified in certain HP PC products using AMI BIOS, which might allow arbitrary code execution. AMI has released firmware updates to mitigate this vulnerability. Se ha identificado una posible vulnerabilidad de seguridad en ciertos productos de PC HP que utilizan AMI BIOS, lo que podría permitir la ejecución de código arbitrario. AMI ha lanzado actualizaciones de firmware para mitigar esta vulnerabilidad. • https://support.hp.com/us-en/document/ish_10914391-10914417-16/hpsbhf03953 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-37020 – HP PC BIOS May 2024 Security Updates for Potential Stack Buffer Overflows
https://notcve.org/view.php?id=CVE-2022-37020
Potential vulnerabilities have been identified in the system BIOS for certain HP PC products, which might allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerabilities. Se han identificado posibles vulnerabilidades en el BIOS del sistema para ciertos productos de PC HP, que podrían permitir la escalada de privilegios y la ejecución de código. HP está lanzando actualizaciones de firmware para mitigar las posibles vulnerabilidades. • https://support.hp.com/us-en/document/ish_10737430-10737454-16/hpsbhf03943 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •