CVE-2019-6327

EUVD-2019-15892
HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. 20190419), HP LaserJet Pro MFP M28-M31 Printer series (before v. 20190426) may have an IPP Parser potentially vulnerable to Buffer Overflow.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 73%
Affected Products (NVD)
VendorProductVersion
hplaserjet_pro_m280-m281_t6b80a_firmware
𝑥
< 20190419
hplaserjet_pro_m280-m281_t6b83a_firmware
𝑥
< 20190419
hplaserjet_pro_m280-m281_t6b81a_firmware
𝑥
< 20190419
hplaserjet_pro_m280-m281_t6b82a_firmware
𝑥
< 20190419
hplaserjet_pro_mfp_m28-m31_w2g54a_firmware
𝑥
< 20190426
hplaserjet_pro_mfp_m28-m31_w2g55a_firmware
𝑥
< 20190426
hplaserjet_pro_mfp_m28-m31_y5s53a_firmware
𝑥
< 20190426
hplaserjet_pro_mfp_m28-m31_y5s55a_firmware
𝑥
< 20190426
hplaserjet_pro_mfp_m28-m31_y5s50a_firmware
𝑥
< 20190426
hplaserjet_pro_mfp_m28-m31_y5s54a_firmware
𝑥
< 20190426
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.hp.com/us-en/document/c06356322
https://support.hp.com/us-en/document/c06356322