National Vulnerability Database

National Vulnerability Database

National Vulnerability

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/o:hp:g1w39a_firmware:-
There are 3 matching records.
Vuln ID Summary CVSS Severity

A potential security vulnerability has been identified with certain HP printers and MFPs in 2405129_000052 and other firmware versions. This vulnerability is known as Cross Site Request Forgery, and could potentially be exploited remotely to allow elevation of privilege.

Published: October 03, 2018; 04:29:18 PM -04:00
V3.0: 8.8 HIGH
    V2: 6.8 MEDIUM

Insufficient Solution DLL Signature Validation allows potential execution of arbitrary code in HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP OfficeJet Enterprise printers before 2308937_578479, 2405087_018548, and other firmware versions.

Published: January 23, 2018; 11:29:01 AM -05:00
V3.0: 9.8 CRITICAL
    V2: 7.5 HIGH

HP has identified a potential security vulnerability with HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS before 2308214_000901, 2308214_000900, and other firmware versions. The vulnerability could be exploited to perform a cross site scripting (XSS) attack.

Published: January 23, 2018; 11:29:01 AM -05:00
V3.0: 6.1 MEDIUM
    V2: 4.3 MEDIUM