CVE-2019-6324

2019-06-1715:55:14

www.cve.org

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.2%

JSON

HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. 20190419), HP LaserJet Pro MFP M28-M31 Printer series (before v. 20190426) may have an embedded web server potentially vulnerable to stored XSS in wireless configuration page

CNA Affected

[
  {
    "product": "HP Color LaserJet Pro M280-M281 Multifunction Printer series; HP LaserJet Pro MFP M28-M31 Printer series",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "before 20190419"
      },
      {
        "status": "affected",
        "version": "before 20190426"
      }
    ]
  }
]

References

support.hp.com/us-en/document/c06356322