CVSS: 9.3EPSS: 3%CPEs: 540EXPL: 1CVE-2018-5925
https://notcve.org/view.php?id=CVE-2018-5925
A security vulnerability has been identified with certain HP Inkjet printers. A maliciously crafted file sent to an affected device can cause a static buffer overflow, which could allow remote code execution. Se ha identificado una vulnerabilidad de seguridad en algunas impresoras HP Inkjet. Un archivo manipulado maliciosamente enviado a un dispositivo afectado puede causar un desbordamiento de búfer estático, lo que podría permitir la ejecución remota de código. • http://www.securityfocus.com/bid/105010 http://www.securitytracker.com/id/1041415 https://research.checkpoint.com/sending-fax-back-to-the-dark-ages https://support.hp.com/us-en/document/c06097712 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 96%CPEs: 76EXPL: 3CVE-2017-2741 – HP PageWide Printers / HP OfficeJet Pro Printers (OfficeJet Pro 8210) - Arbitrary Code Execution
https://notcve.org/view.php?id=CVE-2017-2741
A potential security vulnerability has been identified with HP PageWide Printers, HP OfficeJet Pro Printers, with firmware before 1708D. This vulnerability could potentially be exploited to execute arbitrary code. Se ha identificado una potencial vulnerabilidad de seguridad en HP PageWide Printers y HP OfficeJet Pro Printers, con firmware en versiones anteriores a 1708D. Esta vulnerabilidad podría ser explotada para ejecutar código arbitrario. HP PageWide and OfficeJet Pro printers suffer from an arbitrary code execution vulnerability. • https://www.exploit-db.com/exploits/42176 https://www.exploit-db.com/exploits/45273 https://github.com/dopheide-esnet/zeek-jetdirect https://support.hp.com/us-en/document/c05462914 •