CVE-2019-6318
UnknownEPSS 2.61%
Last modified
CVE-2019-6318 is a vulnerability of currently unknown severity. HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code.. EPSS estimates a 2.61% chance of exploitation in the next 30 days.
Description
HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Hp | Color Laserjet Cm4540 Mfp Firmware | < 2309010_581401 |
| Hp | Color Laserjet Enterprise Cp5525 Firmware | < 2309010_581402 |
| Hp | Color Laserjet Enterprise M553 Firmware | < 2309010_581409 |
| Hp | Color Laserjet Enterprise M552 Firmware | < 2309010_581409 |
| Hp | Color Laserjet Enterprise M552 Firmware | < 2407081_00060 |
| Hp | Color Laserjet Managed M553 Firmware | < 2309010_581409 |
| Hp | Color Laserjet Managed M553 Firmware | < 2407081_000601 |
| Hp | Color Laserjet Enterprise M651 Firmware | < 2309010_581418 |
| Hp | Color Laserjet Enterprise M651 Firmware | < 2407081_000585 |
| Hp | Color Laserjet Managed M651 Firmware | < 2309010_581418 |
| Hp | Color Laserjet Managed M651 Firmware | < 2407081_000585 |
| Hp | Color Laserjet Enterprise M652 Firmware | < 2407081_000586 |
| Hp | Color Laserjet Enterprise M653 Firmware | < 2407081_000586 |
| Hp | Color Laserjet Enterprise M750 Firmware | < 2309010_581423 |
| Hp | Color Laserjet Enterprise M855 Firmware | < 2309010_581419 |
| Hp | Color Laserjet Enterprise M855 Firmware | < 2407081_000589 |
| Hp | Color Laserjet Enterprise Mfp M577 Firmware | < 2309010_581408 |
| Hp | Color Laserjet Enterprise Mfp M577 Firmware | < 2407081_000571 |
| Hp | Color Laserjet Enterprise Flow Mfp M577 Firmware | < 2309010_581408 |
| Hp | Color Laserjet Enterprise Flow Mfp M577 Firmware | < 2407081_000571 |
| Hp | Color Laserjet Enterprise Mfp M680 Firmware | < 2309010_581416 |
| Hp | Color Laserjet Enterprise Mfp M680 Firmware | < 2407081_000591 |
| Hp | Color Laserjet Enterprise Flow Mfp M680 Firmware | < 2309010_581416 |
| Hp | Color Laserjet Enterprise Flow Mfp M680 Firmware | < 2407081_000591 |
| Hp | Color Laserjet Enterprise Mfp M681 Firmware | < 2407081_000578 |
| Hp | Color Laserjet Enterprise Flow Mfp M681 Firmware | < 2407081_000578 |
| Hp | Color Laserjet Enterprise Mfp M682 Firmware | < 2407081_000578 |
| Hp | Color Laserjet Enterprise Flow Mfp M682 Firmware | < 2407081_000578 |
| Hp | Color Laserjet Enterprise Flow Mfp M880z Firmware | < 2309010_581433 |
| Hp | Color Laserjet Enterprise Flow Mfp M880z Firmware | < 2407081_000599 |
| Hp | Color Laserjet Managed Flow Mfp M880zm Firmware | < 2309010_581433 |
| Hp | Color Laserjet Managed Flow Mfp M880zm Firmware | < 2407081_000599 |
| Hp | Color Laserjet Managed E55040dw Firmware | < 2407081_000601 |
| Hp | Color Laserjet Managed E65050 Firmware | < 2407081_000586 |
| Hp | Color Laserjet Managed E65060 Firmware | < 2407081_000586 |
| Hp | Color Laserjet Managed Flow Mfp E77822 Firmware | < 2407081_000644 |
| Hp | Color Laserjet Managed Flow Mfp E77825 Firmware | < 2407081_000644 |
| Hp | Color Laserjet Managed Flow Mfp E77830 Firmware | < 2407081_000644 |
| Hp | Color Laserjet Managed Mfp E57540 Firmware | < 2407081_000571 |
| Hp | Color Laserjet Managed Flow Mfp E57540 Firmware | < 2407081_000571 |
| Hp | Color Laserjet Managed Mfp E67550 Firmware | < 2407081_000578 |
| Hp | Color Laserjet Managed Mfp E67560 Firmware | < 2407081_000578 |
| Hp | Color Laserjet Managed Flow Mfp E6750 Firmware | < 2407081_000578 |
| Hp | Color Laserjet Managed Flow Mfp E67560 Firmware | < 2407081_000578 |
| Hp | Color Laserjet Managed Mfp E77822 Firmware | < 2407081_000644 |
| Hp | Color Laserjet Managed Mfp E77825 Firmware | < 2407081_000644 |
| Hp | Color Laserjet Managed Mfp E77830 Firmware | < 2407081_000644 |
| Hp | Color Laserjet Managed Mfp E87640 Firmware | < 2407163_000224 |
| Hp | Color Laserjet Managed Mfp E87650 Firmware | < 2407163_000224 |
| Hp | Color Laserjet Managed Mfp E87660 Firmware | < 2407163_000224 |
Showing 50 of 197 affected configurations. See NVD for the full list.
References
- https://support.hp.com/us-en/document/c06265454Vendor Advisory
- https://support.hp.com/us-en/document/c06265454Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-6318?
HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, HP Officejet Enterprise printers have an insufficient solution bundle signature validation that potentially allows execution of arbitrary code.
How severe is CVE-2019-6318?
Severity scoring for CVE-2019-6318 is pending analysis. The EPSS model estimates a 2.61% probability of exploitation in the next 30 days.
How do I fix CVE-2019-6318?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2019-6318?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST