HP 多款产品缓冲区错误漏洞

The HP Color LaserJet Pro M280-M281 is a printer from Hewlett-Packard HP in the United States. A buffer error vulnerability exists in several HP products, which stems from a potential buffer overflow in a software driver that could result in privilege escalation. The following products and versio...

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series Buffer Overflow Vulnerability

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series are printer products introduced by Hewlett-Packard HP. A buffer overflow vulnerability exists in the HP Color LaserJet Pro M280-M281 Multifunction Printer series prior to version 20190419 a...

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series Cross-Site Request Forgery Vulnerability

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series are printer products introduced by Hewlett-Packard HP. A cross-site request forgery vulnerability exists in the HP Color LaserJet Pro M280-M281 Multifunction Printer series prior to version...

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series cross-site scripting vulnerability (CNVD-2019-23315)

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series are printer products introduced by Hewlett-Packard HP. A cross-site scripting vulnerability exists in the wireless configuration page in the HP Color LaserJet Pro M280-M281 Multifunction...

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series cross-site scripting vulnerability (CNVD-2019-23309)

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series are printer products introduced by Hewlett-Packard HP. A cross-site scripting vulnerability exists in the wireless configuration page in the HP Color LaserJet Pro M280-M281 Multifunction...

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series buffer overflow vulnerability (CNVD-2019-23317)

HP Color LaserJet Pro M280-M281 Multifunction Printer series and HP LaserJet Pro MFP M28-M31 Printer series are printer products introduced by Hewlett-Packard HP. A buffer overflow vulnerability exists in the HP Color LaserJet Pro M280-M281 Multifunction Printer series prior to version 20190419 a...

CVE-2019-6324

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have an embedded web server potentially vulnerable to stored XSS in wireless configuration page...

CVE-2019-6323

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have an embedded web server potentially vulnerable to reflected XSS in wireless configuration page...

CVE-2019-6325

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have an embedded web server that is potentially vulnerable to Cross-site Request Forgery...

CVE-2019-6327

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have an IPP Parser potentially vulnerable to Buffer Overflow...

CVE-2019-6327

CVE-2019-6327 affects HP Color LaserJet Pro M280-M281 Multifunction Printer series (before 20190419) and HP LaserJet Pro MFP M28-M31 Printer series (before 20190426). The issue is a buffer overflow in the IPP service/parser, per multiple sources (NVD/NVDC equivalents and HP advisory). Impact deta...

CVE-2019-6325

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have an embedded web server that is potentially vulnerable to Cross-site Request Forgery...

CVE-2019-6325

CVE-2019-6325 affects HP Color LaserJet Pro M280-M281 Multifunction Printer series (before 20190419) and HP LaserJet Pro MFP M28-M31 Printer series (before 20190426). The vulnerability is a Cross-Site Request Forgery in the printer’s embedded web server. HP’s advisory (HPSBPI03619 rev. 2) notes t...

CVE-2019-6324

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have an embedded web server potentially vulnerable to stored XSS in wireless configuration page...

CVE-2019-6324

HP Color LaserJet Pro M280-M281 Multifunction Printer series (before 20190419) and HP LaserJet Pro MFP M28-M31 Printer series (before 20190426) are affected by a stored XSS in the wireless configuration page due to insufficient input validation on the embedded web server. This could allow an atta...

CVE-2019-6323

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have an embedded web server potentially vulnerable to reflected XSS in wireless configuration page...

CVE-2019-6323

HP Color LaserJet Pro M280-M281 Multifunction Printer series (before 20190419) and HP LaserJet Pro MFP M28-M31 Printer series (before 20190426) expose a vulnerability in the embedded web server’s wireless configuration page that allows reflected cross-site scripting (XSS). Root cause: lack of pro...