61 matches found
SUSE-SU-2026:2380-1 Security update for hplip
This update for hplip fixes the following issues Update to HPLIP 3.26.4: Security issues: - CVE-2025-43023: weak code signing DSA key used to generate package signatures can lead to key spoofing and malicious software installation bsc1266031. - CVE-2026-8631: escalation of privileges and/or...
CVE-2026-4682
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allo...
EUVD-2026-22949
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allo...
CVE-2026-4682
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allo...
CVE-2026-4682
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allo...
CVE-2026-4682 Certain HP DeskJet All In One (AIO) Devices – Potential Remote Code Execution & Potential Buffer Overflow
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allo...
CVE-2026-4682 Certain HP DeskJet All In One (AIO) Devices – Potential Remote Code Execution & Potential Buffer Overflow
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allo...
CVE-2026-4682
HP DeskJet All-in-One devices may be vulnerable to remote code execution due to a buffer overflow in processing specially crafted Web Services for Devices (WSD) scan requests. Affected component is the WSD handling in HP MFPs. Root cause: improper validation/handling of WSD scan requests leading ...
(Pwn2Own) HP DeskJet 2855e JobStatusEvent Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of HP DeskJet 2855e printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SOAP requests. When handling a JobStatusEvent, the...
Certain HP DeskJet All In One (AIO) Devices – Potential Remote Code Execution & Potential Buffer Overflow
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. As a temporary mitigation measure for the buffer overflow vulnerability,...
HP DeskJet All in One 安全漏洞
The HP DeskJet All in One is a multi-functional inkjet printing device from the American company HP. The HP DeskJet All in One has a security vulnerability, which stems from improper handling of specially crafted WSD scan request verifications. This vulnerability may lead to buffer overflows and...
PT-2026-33075
Name of the Vulnerable Software and Affected Versions HP DeskJet 2800e Series affected versions not specified HP DeskJet 2855e affected versions not specified Description Certain HP DeskJet All in One devices are subject to remote code execution due to a stack-based buffer overflow. This occurs...
EUVD-2019-15885
Malware in sbrugna...
EUVD-2009-1331
Malware in sbrugna...
EUVD-2019-15884
Malware in sbrugna...
EUVD-2022-51011
Malicious code in bioql PyPI...
CVE-2022-43780
Certain HP ENVY, OfficeJet, and DeskJet printers may be vulnerable to a Denial of Service attack...
CVE-2019-6320
Certain HP DeskJet 3630 All-in-One Printers models F5S43A - F5S57A, K4T93A - K4T99C, K4U00B - K4U03B, and V3F21A - V3F22A firmware version SWP1FN1912BR or higher have a Cross-Site Request Forgery CSRF vulnerability that could lead to a denial of service DOS or device misconfiguration...
CVE-2019-6319
HP DeskJet 3630 All-in-One Printers models F5S43A - F5S57A, K4T93A - K4T99C, K4U00B - K4U03B, and V3F21A - V3F22A firmware version SWP1FN1912BR or higher have a Cross-Site Request Forgery CSRF vulnerability that could lead to a denial of service DOS or device misconfiguration...
The vulnerability of the update utility for microprogrammed printing systems from HP DeskJet allows a hacker to execute arbitrary code.
The vulnerability of the printer software update utility for HP DeskJet is related to an uncontrolled search path element. Exploiting this vulnerability could allow a hacker to execute arbitrary code using a specially crafted DLL file...