Lucene search

HpCVELIST:CVE-2024-0794

HistoryFeb 20, 2024 - 5:23 p.m.

CVE-2024-0794 Certain LaserJet Pro, HP Enterprise LaserJet, HP LaserJet Managed Printers – Potential Buffer Overflow, Potential Remote Code Execution

2024-02-2017:23:10

www.cve.org

cve-2024-0794

laserjet pro

hp enterprise

managed printers

buffer overflow

remote code execution

pdf

font rendering

7.9 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

29.0%

JSON

Certain HP LaserJet Pro, HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially vulnerable to Remote Code Execution due to buffer overflow when rendering fonts embedded in a PDF file.

CNA Affected

[
  {
    "vendor": "HP Inc.",
    "product": "Certain LaserJet Pro, HP Enterprise LaserJet, HP LaserJet Managed Printers",
    "defaultStatus": "unknown",
    "versions": [
      {
        "version": "See HP Security Bulletin reference for affected versions.",
        "status": "affected"
      }
    ]
  }
]

References

support.hp.com/us-en/document/ish_10174031-10198670-16