APT trends report Q3 2024

Kaspersky's Global Research and Analysis Team GReAT has been releasing quarterly summaries of advanced persistent threat APT activity for over seven years now. Based on our threat intelligence research, these summaries offer a representative overview of what we've published and discussed in more...

Security update for hplip

This update for hplip fixes the following issues: hpmud: sanitize printer serial number bsc1209401 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product:...

SUSE-SU-2024:4089-1 Security update for hplip

This update for hplip fixes the following issues: - hpmud: sanitize printer serial number bsc1209401...

PT-2024-41015 · Hewlett Packard · Hplip

Name of the Vulnerable Software and Affected Versions: hplip affected versions not specified Description: The issue is related to the hpmud component of hplip, where the printer serial number is not properly sanitized. Recommendations: At the moment, there is no information about a newer version...

openSUSE Security Advisory (SUSE-SU-2024:4076-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for hplip

This update for hplip fixes the following issues: hpmud: sanitize printer serial number bsc1209401 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product:...

SUSE-SU-2024:4076-1 Security update for hplip

This update for hplip fixes the following issues: - hpmud: sanitize printer serial number bsc1209401...

Malicious code in wms-printer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9a41ff2a05e27682f3bd0effb5750b0d0b26312deafd88f3eff71b6e0d1f5aec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11019 Malicious code in wms-printer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9a41ff2a05e27682f3bd0effb5750b0d0b26312deafd88f3eff71b6e0d1f5aec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

DAAS. PDF Printer generates image files are not editable selectable letters in PDFs with HTML5

Citrix PDF Printer generates image files are not editable / selectable letters in PDFs with 2402 With HTML5 Receiver v22.9.0.26 in DAAS. Users can't copy and paste any character...

PT-2024-41014 · Hewlett Packard · Hplip

Name of the Vulnerable Software and Affected Versions: hplip affected versions not specified Description: The issue is related to the hpmud component of hplip, where the printer serial number is not properly sanitized. Recommendations: At the moment, there is no information about a newer version...

Sharp MFP和Toshiba MFP 安全漏洞

Sharp MFP is a series of multifunction printers from Sharp Corporation, Japan.Toshiba MFP is a series of printers from Toshiba Corporation, Japan. A security vulnerability exists in Sharp MFP and Toshiba MFP that stems from an out-of-bounds read issue that makes them susceptible to...

CUPS IPP Attributes LAN Remote Code Execution Exploit

This Metasploit module exploits vulnerabilities in OpenPrinting CUPS, which is running by default on most Linux distributions. The vulnerabilities allow an attacker on the LAN to advertise a malicious printer that triggers remote code execution when a victim sends a print job to the malicious...

PaperCut NG 安全漏洞

PaperCut NG is a printer control software from PaperCut, Inc. A security vulnerability exists in PaperCut NG that stems from the exposure of a dangerous function with a remote code execution vulnerability that could allow a remote attacker to execute arbitrary code on an affected installation...

CUPS IPP Attributes LAN Remote Code Execution

class MetasploitModule Msf::Exploit::Remote Rank = NormalRanking include Exploit::Remote::DNS::Common include Exploit::Remote::SocketServer include Msf::Exploit::Remote::HttpServer::HTML Accessor for IPP HTTP service attraccessor :service2 MULTICASTADDR = '224.0.0.251' Define IPP constants module...

CVE-2019-20460

An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. POST requests don't require anti-CSRF tokens or other mechanisms for validating that the request is from a legitimate source. In addition, CSRF attacks can be used to send text directly to the RAW printer interface. For...

CVE-2019-20460

An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. POST requests don't require anti-CSRF tokens or other mechanisms for validating that the request is from a legitimate source. In addition, CSRF attacks can be used to send text directly to the RAW printer interface. For...

CVE-2019-20460

An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. POST requests don't require anti-CSRF tokens or other mechanisms for validating that the request is from a legitimate source. In addition, CSRF attacks can be used to send text directly to the RAW printer interface. For...

PT-2024-10736 · Epson · Epson Expression Home Xp255

Name of the Vulnerable Software and Affected Versions: Epson Expression Home XP255 version 20.08.FM10I8 Description: An issue was discovered where POST requests do not require anti-CSRF tokens or other mechanisms for validating that the request is from a legitimate source. This allows for CSRF...

Citrix Virtual Desktop - Printers cannot be created if one of printer server is offline

There are 2 printer servers, each with 6 printers. Apply the printers with Citrix policy "Printer Assignment". If one printer server is offline, other online printers cannot be created in the ICA session desktop...