Description
A security vulnerability has been identified with certain HP Inkjet printers. A maliciously crafted file sent to an affected device can cause a stack buffer overflow, which could allow remote code execution.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/105010
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1041415
Third Party Advisory x_refsource_misc
https://research.checkpoint.com/sending-fax-back-to-the-dark-ages/
Vendor Advisory vendor-advisory
x_refsource_hp
https://support.hp.com/us-en/document/c06097712
Scores
CVSS v3
9.8
EPSS
0.1735
EPSS Percentile
95.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-787
Status
published
Products (50)
hp/1dt61a_firmware
1828a
hp/1jl02a_firmware
1829a
hp/1jl02b_firmware
1829a
hp/1sh08_firmware
1828a
hp/2nd31a_firmware
1828b
hp/3aw44a_firmware
1828a
hp/3aw51a_firmware
1828a
hp/3yz74a_firmware
1828a
hp/4sc29a_firmware
1828a
hp/4uj28b_firmware
1828a
... and 40 more
Published
Aug 13, 2018
Tracked Since
Feb 18, 2026