FKIE_CVE-2019-18912
Vulnerability from fkie_nvd - Published: 2021-11-09 15:15 - Updated: 2024-11-21 04:33
Severity ?
Summary
A potential security vulnerability has been identified for certain HP printers and MFPs with Troy solutions. For affected printers with FutureSmart Firmware bundle version 4.9 or 4.9.0.1 the potential vulnerability may cause instability in the solution.
References
| URL | Tags | ||
|---|---|---|---|
| hp-security-alert@hp.com | https://support.hp.com/us-en/document/c06513924 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.hp.com/us-en/document/c06513924 | Vendor Advisory |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:futuresmart_4:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5B040E6F-1416-4499-B1FA-D3A69003DB7C",
"versionEndExcluding": "2409065_000092",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m507_1pv86a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B94F4583-CC33-4350-B996-D1E238EEF0A9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m507_1pv87a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D5EF8EDF-5AA7-4E5A-AEFF-D8B2AB8BA971",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m507_1pv89a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EA4CADC9-B0BD-422E-A6C0-21ADD984A605",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:futuresmart_4:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D70CA7F7-03A4-4E09-90E0-1864465108F0",
"versionEndExcluding": "2409065_000063",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m607_k0q14a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "04408A7B-DD5A-4DA2-8A05-AD0A9C0362F6",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m607_k0q15a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3B9A9453-C822-4343-8550-C3D82A5DE3FE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m608_k0q17a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AD70DE1F-3D25-46BC-8481-5FCC3583E12C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m608_k0q18a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BFBCB99F-A0B3-4C7D-A40F-0168AEB833FC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m608_k0q19a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "85C609A0-A5F5-4D24-A4FA-399952AA2CB7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m609_k0q20a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F4926D9A-7E6B-46F7-9F9B-34ECC6098630",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m609_k0q21a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "75B7FD81-821D-4FAE-9719-4A1A3C7716C2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m609_k0q22a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4A724AFD-FB55-40E7-B674-9C7584509066",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:futuresmart_4:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E99801AA-CCC4-4AC2-BE7E-86D3B3D7D7BB",
"versionEndExcluding": "2409065_000082",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m806_cz244a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C4E64018-F243-4AE3-911A-97EA6A918A70",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_m806_cz245a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "951EB1DE-8403-4C39-8F3D-4AC53503DDEA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:futuresmart_4:*:*:*:*:*:*:*:*",
"matchCriteriaId": "32AEC96A-F991-481F-B873-B451444F75E0",
"versionEndExcluding": "2409065_000073",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m527_f2a78v:-:*:*:*:*:*:*:*",
"matchCriteriaId": "094971DF-462D-4780-A102-0ABE67B68DDE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m527_f2a79a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6D5C5FAF-B8CA-4492-9990-EE4619C847A4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_flow_mfp_m527_f2a80a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3F97483D-B34F-43A4-A86C-38C88FC7BE23",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_mfp_m527_f2a76a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0AE3B23F-AB99-42C6-A2B7-0FE72CBBC871",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_mfp_m527_f2a77a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "656A3546-E613-4A99-95D1-2B07E8F8B53B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_mfp_m527_f2a81a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FDB1F15F-E4FE-4779-BA31-8BF3384B7259",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hp:futuresmart_4:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8FFCD35A-7C43-45B2-9F02-A37231D23516",
"versionEndExcluding": "2409065_000054",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_mfp_m528_1pv64a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "01BFA169-42BD-4FDD-8FFC-C1F26EB560A1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_mfp_m528_1pv65a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "27D361F3-AA12-41EC-A767-0CD30015E965",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:hp:laserjet_enterprise_mfp_m528_1pv67a:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8BC2BEDE-6C53-4A56-AAD8-1D640A23A464",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A potential security vulnerability has been identified for certain HP printers and MFPs with Troy solutions. For affected printers with FutureSmart Firmware bundle version 4.9 or 4.9.0.1 the potential vulnerability may cause instability in the solution."
},
{
"lang": "es",
"value": "Se ha identificado una potencial vulnerabilidad de seguridad para determinadas impresoras y MFPs de HP con soluciones Troy. Para las impresoras afectadas con la versi\u00f3n 4.9 o 4.9.0.1 del paquete de firmware FutureSmart, una posible vulnerabilidad puede causar inestabilidad en la soluci\u00f3n"
}
],
"id": "CVE-2019-18912",
"lastModified": "2024-11-21T04:33:49.593",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-11-09T15:15:08.563",
"references": [
{
"source": "hp-security-alert@hp.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.hp.com/us-en/document/c06513924"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.hp.com/us-en/document/c06513924"
}
],
"sourceIdentifier": "hp-security-alert@hp.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…