224 matches found
EUVD-2025-22718
Malicious code in bioql PyPI...
EUVD-2025-31631
Malicious code in bioql PyPI...
EUVD-2023-28914
Malicious code in bioql PyPI...
CVE-2025-34230
Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 25.1.102 and Application prior to version 25.1.1413 VA/SaaS deployments contain a blind server-side request forgery SSRF vulnerability reachable via the /var/www/app/consolerelease/hp/logoffsinglesignon.php script that can...
PT-2025-33733 · Ippusbxd · Ippusbxd
Name of the Vulnerable Software and Affected Versions: ippusbxd version 1.34 Description: A stack based buffer overflow vulnerability exists in ippusbxd. A specially configured printer supporting IPP-over-USB can cause a buffer overflow, potentially leading to arbitrary code execution within a...
CVE-2024-51982
An unauthenticated attacker who can connect to TCP port 9100 can issue a Printer Job Language PJL command that will crash the target device. The device will reboot, after which the attacker can reissue the command to repeatedly crash the device. A malformed PJL variable FORMLINES is set to a non...
PT-2025-26810 · Unknown · Network Printer
Name of the Vulnerable Software and Affected Versions: Brother, FUJIFILM, RICOH, Toshiba Tec, and Konica Minolta Printers affected versions not specified Description: An unauthenticated attacker with access to the HTTP service TCP port 80, HTTPS service TCP port 443, or IPP service TCP port 631 c...
Command Execution Vulnerability in Brother Technology Corporation HL-L2360D series
The HL-L2360D series is a line of compact monochrome laser printers, with key models such as the HL-L2360DW. A command execution vulnerability exists in the Brother Technology Corporation HL-L2360D series, which can be exploited by an attacker to execute commands...
Lexmark Printer Path Traversal and Concurrent Execution Vulnerability (CVE-2025-1127)
Multiple Lexmark printer devices are prone to a path traversal and concurrent execution vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
(Pwn2Own) Canon imageCLASS MF656Cdw sfpcmAuthenticateSecAdmin Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF656Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the sfpcmAuthenticateSecAdmin function. The issue results...
CVE-2025-2146
A network-reachable buffer overflow in the WebService Authentication processing of Canon Office/Small Office Multifunction Printers and Laser Printers (Canon, Satera) is identified as CVE-2025-2146. Affected models include Canon Color imageCLASS and imageCLASS lines, Satera variants, and i-SENSYS...
CVE-2024-41995
Initialization of a resource with an insecure default vulnerability exists in JavaTM Platform Ver.12.89 and earlier. If this vulnerability is exploited, the product may be affected by some known TLS1.0 and TLS1.1 vulnerabilities. As for the specific products/models/versions of MFPs and printers...
CVE-2024-0794
Certain HP LaserJet Pro, HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially vulnerable to Remote Code Execution due to buffer overflow when rendering fonts embedded in a PDF file...
CVE-2023-0855
Buffer overflow in IPP number-up attribute process of Office / Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. :Satera LBP660C Series/LBP620C Series/MF740C...
CVE-2022-4894
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element...
CVE-2022-48472
A Huawei printer has a system command injection vulnerability. Successful exploitation could lead to remote code execution. Affected product versions include:BiSheng-WNM versions OTA-BiSheng-FW-2.0.0.211-beta,BiSheng-WNM FW 3.0.0.325,BiSheng-WNM FW 2.0.0.211...
CVE-2022-48471
There is a misinterpretation of input vulnerability in Huawei Printer. Successful exploitation of this vulnerability may cause the printer service to be abnormal...
CVE-2022-48473
There is a misinterpretation of input vulnerability in Huawei Printer. Successful exploitation of this vulnerability may cause the printer service to be abnormal...
CVE-2021-39237
Certain HP LaserJet, HP LaserJet Managed, HP PageWide, and HP PageWide Managed printers may be vulnerable to potential information disclosure...
CVE-2020-9330
Certain Xerox WorkCentre printers before 073.xxx.000.02300 do not require the user to reenter or validate LDAP bind credentials when changing the LDAP connector IP address. A malicious actor who gains access to affected devices e.g., by using default credentials can change the LDAP connection IP...