17 matches found
CVE-2026-14544
CVE-2026-14544 concerns HPLIP (HP Linux Imaging and Printing Software) with an integer overflow in the hpcups processing path when handling specially crafted print data. This is described as an incomplete fix for CVE-2026-8631. The vulnerability may allow a remote attacker to escalate privileges ...
Oracle Linux 9 : hplip (ELSA-2026-26297)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-26297 advisory. - OSH fixes after CVE-2026-8631 - CVE-2026-8631 hplip: HPLIP: Arbitrary code execution and privilege escalation via integer overflow in hpcups Tenable...
MiracleLinux 4 : hplip-3.9.8-33.AXS4.1 (AXSA:2011-29:01)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-29:01 advisory. The Hewlett-Packard Linux Imaging and Printing Project provides drivers for HP printers and multi-function peripherals. Security issues fixed with this release...
EUVD-2011-2678
Malware in sbrugna...
EUVD-2009-0131
Malware in sbrugna...
EUVD-2013-6239
Malware in sbrugna...
USN-7202-1: HPLIP vulnerability
Kevin Backhouse discovered that HPLIP incorrectly handled certain MDNS responses. A remote attacker could use this issue to cause HPLIP to crash, resulting in a denial of service, or possibly execute arbitrary code...
Ubuntu 20.04 LTS : HPLIP vulnerability (USN-7202-1)
The remote Ubuntu 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7202-1 advisory. Kevin Backhouse discovered that HPLIP incorrectly handled certain MDNS responses. A remote attacker could use this issue to cause HPLIP to crash, resulting in a...
SUSE SLED15: hplip / hplip-devel / hplip-hpijs / hplip-sane / hplip-scan-utils / etc (SUSE-SU-2024:4089-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:4089-1 advisory. - hpmud: sanitize printer serial number bsc1209401 Tenable has extracted the preceding description block...
Arbitrary File Write
hplip is vulnerable to arbitrary file write. A local attacker could use these flaws to perform a symbolic link attack, overwriting arbitrary files accessible to a process using HPLIP...
USN-2699-1 hplip vulnerability
Enrico Zini discovered that HPLIP used a short GPG key ID when downloading keys from the keyserver. An attacker could possibly use this to return a different key with a duplicate short key id and perform a machine-in-the-middle attack on printer plugin installations...
The vulnerability of the CentOS operating system allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the hplip3-common-3.9.8 package of the CentOS operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. Exploitation of this vulnerability can be carried out remotely...
DEBIAN-CVE-2013-6427
upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing HPLIP 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream...
USN-1956-1: HPLIP vulnerability
It was discovered that HPLIP was using polkit in an unsafe manner. A local attacker could possibly use this issue to bypass intended polkit authorizations...
CVE-2013-0200
HP Linux Imaging and Printing HPLIP through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/hpcupsfilterc.bmp, 2 /tmp/hpcupsfilterk.bmp, 3 /tmp/hpcupsjob.out, 4 /tmp/hpijs.out, or 5 /tmp/hppsjob.out temporary file, a different vulnerability than...
DEBIAN-CVE-2010-4267
Stack-based buffer overflow in the hpmudgetpml function in io/hpmud/pml.c in Hewlett-Packard Linux Imaging and Printing HPLIP 1.6.7, 3.9.8, 3.10.9, and probably other versions allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted SNMP respons...
Ubuntu 6.10 / 7.04 : hplip vulnerability (USN-530-1)
It was discovered that the hpssd tool of hplip did not correctly handle shell meta-characters. A local attacker could exploit this to execute arbitrary commands as the hplip user. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security...