CVSS: 6.4EPSS: 0%CPEs: 1133EXPL: 0CVE-2023-5113 – Certain HP Enterprise LaserJet, LaserJet Managed printers - Potential denial of service, potential Cross Site Scripting (XSS)
https://notcve.org/view.php?id=CVE-2023-5113
04 Oct 2023 — Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI. Certain HP Enterprise LaserJet and HP LaserJet Managed Printers son potencialmente vulnerables a la denegación de servicio debido a la solicitud de WS-Print y posibles inyecciones de Cross Site Scripting (XSS) a través de jQuery-UI. • https://support.hp.com/us-en/document/ish_9365285-9365309-16 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 0%CPEs: 38EXPL: 0CVE-2023-26301
https://notcve.org/view.php?id=CVE-2023-26301
21 Jul 2023 — Certain HP LaserJet Pro print products are potentially vulnerable to an Elevation of Privilege and/or Information Disclosure related to a lack of authentication with certain endpoints. • https://support.hp.com/us-en/document/ish_8746769-8746795-16/hpsbpi03855 • CWE-862: Missing Authorization •
CVSS: 10.0EPSS: 5%CPEs: 1914EXPL: 0CVE-2023-1329
https://notcve.org/view.php?id=CVE-2023-1329
14 Jun 2023 — A potential security vulnerability has been identified for certain HP multifunction printers (MFPs). The vulnerability may lead to Buffer Overflow and/or Remote Code Execution when running HP Workpath solutions on potentially affected products. • https://support.hp.com/us-en/document/ish_8585737-8585769-16/hpsbpi03849 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 318EXPL: 0CVE-2023-1707
https://notcve.org/view.php?id=CVE-2023-1707
13 Jun 2023 — Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to information disclosure when IPsec is enabled with FutureSmart version 5.6. • https://support.hp.com/us-en/document/ish_7905330-7905358-16/hpsbpi03838 • CWE-203: Observable Discrepancy •
CVSS: 10.0EPSS: 3%CPEs: 5821EXPL: 0CVE-2021-3942
https://notcve.org/view.php?id=CVE-2021-3942
22 Nov 2022 — Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR. Ciertos productos HP Print y productos Digital Sending pueden ser vulnerables a una posible ejecución remota de código y desbordamiento de búfer con el uso de resolución de nombres de multidifusión local de enlace o LLMNR. • https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 1523EXPL: 0CVE-2020-28419
https://notcve.org/view.php?id=CVE-2020-28419
09 Nov 2021 — During installation with certain driver software or application packages an arbitrary code execution could occur. Durante la instalación con determinados paquetes de software de controladores o aplicaciones podría producirse una ejecución de código arbitrario • https://support.hp.com/us-en/document/c07058567 •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2019-18916
https://notcve.org/view.php?id=CVE-2019-18916
09 Nov 2021 — A potential security vulnerability has been identified for HP LaserJet Solution Software (for certain HP LaserJet Printers) which may lead to unauthorized elevation of privilege on the client. Se ha identificado una posible vulnerabilidad de seguridad en HP LaserJet Solution Software (para determinadas impresoras HP LaserJet) que puede conllevar a una elevación de privilegios no autorizada en el cliente • https://support.hp.com/us-en/document/c06586963 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 1%CPEs: 382EXPL: 2CVE-2021-3438
https://notcve.org/view.php?id=CVE-2021-3438
20 May 2021 — A potential buffer overflow in the software drivers for certain HP LaserJet products and Samsung product printers could lead to an escalation of privilege. Un posible desbordamiento del búfer en los controladores de software para determinados productos HP LaserJet e impresoras de productos Samsung podría desencadenar una escalada de privilegios • https://github.com/CrackerCat/CVE-2021-3438 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 1%CPEs: 396EXPL: 0CVE-2019-6318
https://notcve.org/view.php?id=CVE-2019-6318
11 Apr 2019 — HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code. Los dispositivos de las impresoras HP LaserJet Enterprise, HP PageWide Enterprise, las impresoras administradas HP LaserJet, HP Officejet Enterprise presentan una vulnerabilidad en la comprobación de firma de paquete de solución insuficiente que potencialmente permite la ... • https://support.hp.com/us-en/document/c06265454 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 9.8EPSS: 1%CPEs: 334EXPL: 0CVE-2018-5923
https://notcve.org/view.php?id=CVE-2018-5923
27 Mar 2019 — In HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed, and HP OfficeJet Enterprise Printers, solution application signature checking may allow potential execution of arbitrary code. En HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed y HP OfficeJet Enterprise Printers, la comprobación de firmas de la aplicación de solución podría permitir la ejecución de código arbitrario. • https://support.hp.com/us-en/document/c06169434 • CWE-347: Improper Verification of Cryptographic Signature •