CVSS: 6.1EPSS: 0%CPEs: 1133EXPL: 0CVE-2023-5113 – Certain HP Enterprise LaserJet, LaserJet Managed printers - Potential denial of service, potential Cross Site Scripting (XSS)
https://notcve.org/view.php?id=CVE-2023-5113
Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI. Certain HP Enterprise LaserJet and HP LaserJet Managed Printers son potencialmente vulnerables a la denegación de servicio debido a la solicitud de WS-Print y posibles inyecciones de Cross Site Scripting (XSS) a través de jQuery-UI. • https://support.hp.com/us-en/document/ish_9365285-9365309-16 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1914EXPL: 0CVE-2023-1329
https://notcve.org/view.php?id=CVE-2023-1329
A potential security vulnerability has been identified for certain HP multifunction printers (MFPs). The vulnerability may lead to Buffer Overflow and/or Remote Code Execution when running HP Workpath solutions on potentially affected products. • https://support.hp.com/us-en/document/ish_8585737-8585769-16/hpsbpi03849 •
CVSS: 6.1EPSS: 0%CPEs: 867EXPL: 0CVE-2019-18914
https://notcve.org/view.php?id=CVE-2019-18914
A potential security vulnerability has been identified for certain HP printers and MFPs that would allow redirection page Cross-Site Scripting in a client’s browser by clicking on a third-party malicious link. Se ha identificado una potencial vulnerabilidad de seguridad para determinadas impresoras y MFPs de HP que permitiría una redirección de página de tipo Cross-Site Scripting en el navegador de un cliente al hacer clic en un enlace malicioso de terceros • https://support.hp.com/us-en/document/c06546034 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 798EXPL: 0CVE-2019-6334
https://notcve.org/view.php?id=CVE-2019-6334
HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code. Las impresoras HP LaserJet, PageWide, OfficeJet Enterprise y LaserJet Managed, presentan una solución para comprobar la firma de aplicación que puede permitir la ejecución potencial de código arbitrario. • https://support.hp.com/us-en/document/c06447795 •
CVSS: 8.8EPSS: 0%CPEs: 394EXPL: 0CVE-2018-5921
https://notcve.org/view.php?id=CVE-2018-5921
A potential security vulnerability has been identified with certain HP printers and MFPs in 2405129_000052 and other firmware versions. This vulnerability is known as Cross Site Request Forgery, and could potentially be exploited remotely to allow elevation of privilege. Se ha identificado una potencial vulnerabilidad de seguridad en ciertas impresoras HP y MFP en versiones de firmware 2405129_000052 y otras. Esta vulnerabilidad se conoce como Cross-Site Request Forgery (CSRF) y podría explotarse remotamente para permitir la elevación de privilegios. • https://support.hp.com/us-en/document/c05949322 • CWE-352: Cross-Site Request Forgery (CSRF) •