CVE-2019-16240

Published: Nov 9, 2021Modified: Nov 21, 2024

9.1

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Exploitability: 3.9 / Impact: 5.2

Source: NVD

Description

A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device.

Affected (44)

44 products

Pagewide Pro 577z K9z76a Firmware

Pagewide Pro 577z K9z76b Firmware

Pagewide Pro 577z K9z76d Firmware

Pagewide Pro 577dw D3q21a Firmware

Pagewide Pro 577dw D3q21b Firmware

Pagewide Pro 577dw D3q21c Firmware

Pagewide Pro 577dw D3q21d Firmware

Pagewide Pro 552dw 2dr21d Firmware

Pagewide Pro 552dw D3q17a Firmware

Pagewide Pro 552dw D3q17d Firmware

Pagewide Pro 552dw K9z74a Firmware

Pagewide Pro 552dw K9z74d Firmware

Pagewide Pro 477dw D3q20a Firmware

Pagewide Pro 477dw D3q20b Firmware

Pagewide Pro 477dw D3q20c Firmware

Pagewide Pro 477dw D3q20d Firmware

Pagewide Pro 477dw W2z53b Firmware

Pagewide Pro 477dn D3q19d Firmware

Pagewide Pro 477dn D3q19b Firmware

Pagewide Pro 477dn D3q19a Firmware

Pagewide Pro 452dw W2z52b Firmware

Pagewide Pro 452dw D3q16d Firmware

Pagewide Pro 452dw D3q16a Firmware

Pagewide Pro 452dn D3q15d Firmware

Pagewide Pro 452dn D3q15b Firmware

Pagewide Pro 452dn D3q15a Firmware

Pagewide Managed P52750dw J9v78b Firmware

Pagewide Managed P52750dw J9v82d Firmware

Pagewide Managed P52750dw J9v82a Firmware

Pagewide Managed P57750dw J9v78b Firmware

Pagewide Managed P57750dw J9v82d Firmware

Pagewide Managed P57750dw J9v82a Firmware

Pagewide Managed P55250dw J6u51b Firmware

Pagewide Managed P55250dw J6u55d Firmware

Pagewide Managed P55250dw J6u55a Firmware

Pagewide 377dw J9v80b Firmware

Pagewide 377dw J9v80a Firmware

Pagewide 352dw J6u57b Firmware

Pagewide 352dw J6u57a Firmware

Officejet Pro 8210 D9l63a Firmware

Officejet Pro 8210 D9l64a Firmware

Officejet Pro 8210 J3p65a Firmware

Officejet Pro 8210 J3p68a Firmware

Officejet Pro 8210 T0g70a Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 577z K9z76a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 577z K9z76a	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 577z K9z76b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 577z K9z76b	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 577z K9z76d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 577z K9z76d	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 577dw D3q21a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 577dw D3q21a	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 577dw D3q21b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 577dw D3q21b	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 577dw D3q21c Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 577dw D3q21c	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 577dw D3q21d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 577dw D3q21d	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 552dw 2dr21d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 552dw 2dr21d	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 552dw D3q17a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 552dw D3q17a	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 552dw D3q17d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 552dw D3q17d	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 552dw K9z74a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 552dw K9z74a	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 552dw K9z74d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 552dw K9z74d	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 477dw D3q20a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 477dw D3q20a	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 477dw D3q20b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 477dw D3q20b	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 477dw D3q20c Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 477dw D3q20c	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 477dw D3q20d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 477dw D3q20d	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 477dw W2z53b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 477dw W2z53b	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 477dn D3q19d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 477dn D3q19d	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 477dn D3q19b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 477dn D3q19b	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 477dn D3q19a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 477dn D3q19a	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 452dw W2z52b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 452dw W2z52b	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 452dw D3q16d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 452dw D3q16d	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 452dw D3q16a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 452dw D3q16a	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 452dn D3q15d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 452dn D3q15d	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 452dn D3q15b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 452dn D3q15b	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Pro 452dn D3q15a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Pro 452dn D3q15a	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Managed P52750dw J9v78b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Managed P52750dw J9v78b	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Managed P52750dw J9v82d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Managed P52750dw J9v82d	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Managed P52750dw J9v82a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Managed P52750dw J9v82a	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Managed P57750dw J9v78b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Managed P57750dw J9v78b	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Managed P57750dw J9v82d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Managed P57750dw J9v82d	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Managed P57750dw J9v82a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Managed P57750dw J9v82a	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Managed P55250dw J6u51b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Managed P55250dw J6u51b	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Managed P55250dw J6u55d Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Managed P55250dw J6u55d	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide Managed P55250dw J6u55a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide Managed P55250dw J6u55a	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide 377dw J9v80b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide 377dw J9v80b	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide 377dw J9v80a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide 377dw J9v80a	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide 352dw J6u57b Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide 352dw J6u57b	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Pagewide 352dw J6u57a Firmware	Before 001.1937d

Running on/with	Platform Versions
Hp Pagewide 352dw J6u57a	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Officejet Pro 8210 D9l63a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp Officejet Pro 8210 D9l63a	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Officejet Pro 8210 D9l64a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp Officejet Pro 8210 D9l64a	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Officejet Pro 8210 J3p65a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp Officejet Pro 8210 J3p65a	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Officejet Pro 8210 J3p68a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp Officejet Pro 8210 J3p68a	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Hp Officejet Pro 8210 T0g70a Firmware	Before 001.1937c

Running on/with	Platform Versions
Hp Officejet Pro 8210 T0g70a	All versions

Related CWEs

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (2)

https://support.hp.com/us-en/document/c06458150

Source: cve@mitre.org

Vendor Advisory

https://support.hp.com/us-en/document/c06458150

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.