CVE-2019-10627

Published: Nov 21, 2019Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Integer overflow to buffer overflow vulnerability in PostScript image handling code used by the PostScript- and PDF-compatible interpreters due to incorrect buffer size calculation. in PostScript and PDF printers that use IPS versions prior to 2019.2 in PostScript and PDF printers that use IPS versions prior to 2019.2

Affected (42)

Products: Qualcomm: Ips · Hp: D9l63a Firmware, D9l64a Firmware, T0g70a Firmware, J3p65a Firmware, J3p68a Firmware, J6u57a Firmware, J6u57b Firmware, J9v80a Firmware, J9v80b Firmware, J6u55a Firmware, J6u55d Firmware, J6u51b Firmware, J9v82a Firmware, J9v82d Firmware, J9v78b Firmware, D3q15a Firmware, D3q15b Firmware, D3q15d Firmware, D3q16a Firmware, D3q16d Firmware, W2z52b Firmware, D3q19a Firmware, D3q19b Firmware, D3q19d Firmware, D3q20a Firmware, D3q20b Firmware, D3q20c Firmware, D3q20d Firmware, W2z53b Firmware, 2dr21d Firmware, D3q17a Firmware, D3q17d Firmware, K9z74a Firmware, K9z74d Firmware, D3q21a Firmware, D3q21b Firmware, D3q21c Firmware, D3q21d Firmware, K9z76a Firmware, K9z76b Firmware, K9z76d Firmware

1 product

41 products

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Qualcomm Ips	Before 2019.2

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D9l63a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp D9l63a	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D9l64a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp D9l64a	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp T0g70a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp T0g70a	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J3p65a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp J3p65a	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J3p68a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp J3p68a	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J6u57a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J6u57a	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J6u57b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J6u57b	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J9v80a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J9v80a	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J9v80b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J9v80b	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J6u55a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J6u55a	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J6u55d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J6u55d	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J6u51b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J6u51b	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J9v82a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J9v82a	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J9v82d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J9v82d	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp J9v78b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp J9v78b	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q15a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q15a	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q15b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q15b	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q15d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q15d	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q16a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q16a	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q16d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q16d	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp W2z52b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp W2z52b	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q19a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q19a	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q19b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q19b	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q19d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q19d	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q20a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q20a	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q20b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q20b	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q20c Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q20c	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q20d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q20d	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp W2z53b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp W2z53b	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp 2dr21d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp 2dr21d	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q17a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q17a	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q17d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q17d	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp K9z74a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp K9z74a	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp K9z74d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp K9z74d	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q21a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q21a	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q21b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q21b	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q21c Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q21c	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp D3q21d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp D3q21d	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp K9z76a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp K9z76a	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp K9z76b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp K9z76b	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp K9z76d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp K9z76d	All versions

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

CWE-131

Incorrect Calculation of Buffer Size

The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

CWE-190

Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

References (4)

https://support.hp.com/us-en/document/c06458150

Source: product-security@qualcomm.com

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin

Source: product-security@qualcomm.com

Third Party Advisory

https://support.hp.com/us-en/document/c06458150

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.