[SECURITY] Fedora 43 Update: hplip-3.26.4-2.fc43

The Hewlett-Packard Linux Imaging and Printing Project provides drivers for HP printers and multi-function peripherals...

HP Printer Privilege Escalation (CVE-2007-0161)

The PML Driver HPZ12 HPZipm12.exe in the HP all-in-one drivers, as used by multiple HP products, uses insecure SERVICECHANGECONFIG DACL permissions, which allows local users to gain privileges and execute arbitrary programs, as demonstrated by modifying the binpath argument, a related issue to...

HP Printer Buffer Overflow (CVE-2006-6742)

Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service device crash via a long string in the 1 LIST or 2 NLST...

CVE-2024-2209

A user with administrative privileges can create a compromised dll file of the same name as the original dll within the HP printer’s Firmware Update Utility FUU bundle and place it in the Microsoft Windows default downloads directory which can lead to potential arbitrary code execution...

EUVD-2021-26988

Malware in sbrugna...

EUVD-2011-4104

Malware in sbrugna...

EUVD-2022-52151

Malicious code in bioql PyPI...

PT-2025-26810 · Unknown · Network Printer

Name of the Vulnerable Software and Affected Versions: Brother, FUJIFILM, RICOH, Toshiba Tec, and Konica Minolta Printers affected versions not specified Description: An unauthenticated attacker with access to the HTTP service TCP port 80, HTTPS service TCP port 443, or IPP service TCP port 631 c...

CVE-2022-4894

Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element...

CVE-2019-6327

HP Color LaserJet Pro M280-M281 Multifunction Printer series before v. 20190419, HP LaserJet Pro MFP M28-M31 Printer series before v. 20190426 may have an IPP Parser potentially vulnerable to Buffer Overflow...

CVE-2019-6334

HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code...

(Pwn2Own) HP LaserJet Pro MFP 3301fdw PostScript File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of HP LaserJet Pro MFP 3301fdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of PostScript data. The issue results from th...

HP Printer Information Disclosure Vulnerability (HPSBPI03941)

Multiple HP printers are prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFIX =...

CVE-2024-2209

A user with administrative privileges can create a compromised dll file of the same name as the original dll within the HP printer’s Firmware Update Utility FUU bundle and place it in the Microsoft Windows default downloads directory which can lead to potential arbitrary code execution...

CVE-2024-2209

HP DeskJet printers are affected by CVE-2024-2209 in the Printer Firmware Update Utility (FUU) bundle. A user with administrative privileges can replace the original DLL in the FUU bundle with a malicious DLL of the same name and place it in the Windows default downloads directory, potentially ca...

CVE-2024-2209 HP Printer Firmware Update Utility for Certain HP DeskJet Printers - Potential Execution of Arbitrary Code

A user with administrative privileges can create a compromised dll file of the same name as the original dll within the HP printer’s Firmware Update Utility FUU bundle and place it in the Microsoft Windows default downloads directory which can lead to potential arbitrary code execution...

CVE-2024-2209 HP Printer Firmware Update Utility for Certain HP DeskJet Printers - Potential Execution of Arbitrary Code

A user with administrative privileges can create a compromised dll file of the same name as the original dll within the HP printer’s Firmware Update Utility FUU bundle and place it in the Microsoft Windows default downloads directory which can lead to potential arbitrary code execution...

PT-2024-2665 · Microsoft +1 · Windows +1

Name of the Vulnerable Software and Affected Versions: HP Printer's Firmware Update Utility FUU bundle affected versions not specified Description: The issue is related to an uncontrolled search path element in the HP printer's Firmware Update Utility FUU bundle. A user with administrative...

HP Printer Information Disclosure Vulnerability (HPSBPI03918)

Multiple HP printer are prone to an information disclosure vulnerability when connections made by the device back to services enabled by some solutions may have been trusted without the appropriate CA certificate in the device SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might...

HP Printer RCE Vulnerability (HPSBPI03917)

Multiple HP printer are prone to a remote code execution RCE vulnerability due to a buffer overflow when rendering fonts embedded in a PDF file. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective rig...