Certain HP OfficeJet Pro Printers - Potential Denial of Service

Certain HP OfficeJet Pro printers are potentially vulnerable to a Denial of Service when using an improper eSCL URL GET request. Update your printer firmware...

New Phishing Attack Uses Clever Microsoft Office Trick to Deploy NetSupport RAT

A new phishing campaign is targeting U.S. organizations with the intent to deploy a remote access trojan called NetSupport RAT. Israeli cybersecurity company Perception Point is tracking the activity under the moniker Operation PhantomBlu. "The PhantomBlu operation introduces a nuanced exploitati...

PaperCut NG Security Vulnerability

PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. A security vulnerability exists in PaperCut NG/MF that stems from allowing an attacker to enumerate information in the device API...

PaperCut NG/MF Security Vulnerabilities

PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. A security vulnerability exists in PaperCut NG/MF that originates from allowing unauthorized write operations that could result in remote code execution...

PaperCut NG Security Vulnerability

PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. A security vulnerability exists in PaperCut NG/MF that stems from a vulnerability that allows an attacker to expose files on the server to affected API endpoints via a payload...

Buffer overflow

Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.:Satera MF740C Series/Satera MF640C...

PT-2024-15326 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a confused deputy in the getCustomPrinterIcon function of PrintManagerService.java, allowing an attacker to view other users' images. This could lead to local...

HP Printer Information Disclosure Vulnerability (HPSBPI03918)

Multiple HP printer are prone to an information disclosure vulnerability when connections made by the device back to services enabled by some solutions may have been trusted without the appropriate CA certificate in the device SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might...

HP Printer RCE Vulnerability (HPSBPI03917)

Multiple HP printer are prone to a remote code execution RCE vulnerability due to a buffer overflow when rendering fonts embedded in a PDF file. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective rig...

FUJIFILM Business Innovation Corp. printers vulnerable to cross-site request forgery

Overview Multiple printers provided by FUJIFILM Business Innovation Corp. contain a cross-site request forgery vulnerability CWE-352. Junnosuke Kushibiki, Ryu Kuki, Masataka Mizokuchi, Takayuki Sasaki, and Katsunari Yoshioka of Yokohama National University reported this vulnerability to IPA...

The vulnerability of HP DesignJet printer’s microprogramming software relates to the execution of operations beyond the buffer boundaries in memory, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of HP DesignJet printer’s microprogramming software lies in the execution of operations beyond the buffer limits. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information by connecting to port 9220...

printer-spb.ru Cross Site Scripting vulnerability OBB-3857594

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2024-0794

Certain HP LaserJet Pro, HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially vulnerable to Remote Code Execution due to buffer overflow when rendering fonts embedded in a PDF file...

November 14, 2023—KB5032198 (OS Build 20348.2113)

November 14, 2023—KB5032198 OS Build 20348.2113 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out wh...

November 14, 2023—KB5032196 (OS Build 17763.5122) - EXPIRED

November 14, 2023—KB5032196 OS Build 17763.5122 - EXPIRED EXPIRATION NOTICEIMPORTANT As of March 31, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. 11/17/20 For...

Hp LaserJet Pro Printer Security Vulnerability

The HP Hp LaserJet Pro Printer is a laser printer from Hewlett-Packard HP in the United States. A security vulnerability exists in the Hp LaserJet Pro Printer that stems from a buffer overflow vulnerability that can be exploited by an attacker to execute remote code...

The vulnerability of the printer troubleshooting tool from Microsoft, which addresses errors in printer functionality due to insufficient input data verification, allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Printer Metadata Troubleshooter Tool relates to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

RICOH Aficio MP 305+ Cross-site Scripting (CVE-2018-17314)

On the RICOH Aficio MP 305+ printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi. This plugin only works with Tenable.ot. Please visit...

RICOH MP C6503 Cross-site Scripting (CVE-2018-17311)

On the RICOH MP C6503 Plus printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi. This plugin only works with Tenable.ot. Please visit...

RICOH Multiple Products Stack Buffer Overflow (CVE-2021-33945)

RICOH Printer series SP products 320DN, SP 325DNw, SP 320SN, SP 320SFN, SP 325SNw, SP 325SFNw, SP 330SN, Aficio SP 3500SF, SP 221S, SP 220SNw, SP 221SNw, SP 221SF, SP 220SFNw, SP 221SFNw v1.06 were discovered to contain a stack buffer overflow in the file /etc/wpasupplicant.conf. This vulnerabili...