41 matches found
CVE-2026-4682
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allo...
CVE-2026-4682
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allo...
CVE-2026-4682
HP DeskJet All-in-One devices may be vulnerable to remote code execution due to a buffer overflow in processing specially crafted Web Services for Devices (WSD) scan requests. Affected component is the WSD handling in HP MFPs. Root cause: improper validation/handling of WSD scan requests leading ...
Certain HP DeskJet All In One (AIO) Devices – Potential Remote Code Execution & Potential Buffer Overflow
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. As a temporary mitigation measure for the buffer overflow vulnerability,...
HP DeskJet All in One 安全漏洞
The HP DeskJet All in One is a multi-functional inkjet printing device from the American company HP. The HP DeskJet All in One has a security vulnerability, which stems from improper handling of specially crafted WSD scan request verifications. This vulnerability may lead to buffer overflows and...
EUVD-2019-15885
Malware in sbrugna...
EUVD-2019-15884
Malware in sbrugna...
EUVD-2009-1331
Malware in sbrugna...
EUVD-2022-51011
Malicious code in bioql PyPI...
CVE-2019-6320
Certain HP DeskJet 3630 All-in-One Printers models F5S43A - F5S57A, K4T93A - K4T99C, K4U00B - K4U03B, and V3F21A - V3F22A firmware version SWP1FN1912BR or higher have a Cross-Site Request Forgery CSRF vulnerability that could lead to a denial of service DOS or device misconfiguration...
CVE-2019-6319
HP DeskJet 3630 All-in-One Printers models F5S43A - F5S57A, K4T93A - K4T99C, K4U00B - K4U03B, and V3F21A - V3F22A firmware version SWP1FN1912BR or higher have a Cross-Site Request Forgery CSRF vulnerability that could lead to a denial of service DOS or device misconfiguration...
HP Printer Firmware Update Utility for Certain HP DeskJet Printers - Potential Execution of Arbitrary Code
A user with administrative privileges can create a compromised dll file of the same name as the original dll within the HP printer’s Firmware Update Utility FUU bundle and place it in the Microsoft Windows default downloads directory which can lead to potential arbitrary code execution. Update yo...
CVE-2022-48311
UNSUPPORTED WHEN ASSIGNED Cross Site Scripting XSS in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products tha...
CVE-2022-48311
UNSUPPORTED WHEN ASSIGNED Cross Site Scripting XSS in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products tha...
Cross site scripting
UNSUPPORTED WHEN ASSIGNED Cross Site Scripting XSS in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products tha...
HP Deskjet 2540 跨站脚本漏洞
The HP Deskjet 2540 is a printer from Hewlett-Packard HP in the United States. A cross-site scripting vulnerability exists in the HP Deskjet 2540 Printer series version CEP1FN1418BR, which stems from the presence of cross-site scripting XSS that allows authenticated attackers to inject their own...
CVE-2022-48311
UNSUPPORTED WHEN ASSIGNED Cross Site Scripting XSS in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products tha...
CVE-2022-48311
The CVE-2022-48311 entry concerns the HP Deskjet 2540 series printer, specifically firmware CEP1FN1418BR (model A9U23B). It states a Cross Site Scripting (XSS) vulnerability in the HTTP configuration page that can be exploited by an authenticated attacker to inject their own script. The issue is ...
CVE-2022-48311
UNSUPPORTED WHEN ASSIGNED Cross Site Scripting XSS in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products tha...
PT-2023-15690 · Hewlett Packard · Hp Deskjet 2540 Series
Name of the Vulnerable Software and Affected Versions: HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR Description: The issue allows an authenticated attacker to inject their own script into the page via the HTTP configuration page, which is a Cross Site Scripting XSS problem. This...