Strix
26.1K

CVE-2019-6332

MEDIUMCVSS 4.8/10EPSS 0.65%

Last modified

CVE-2019-6332 is a medium-severity vulnerability rated 4.8/10 on the CVSS scale. A potential security vulnerability has been identified with certain HP InkJet printers. The vulnerability could be exploited to allow cross-site scripting (XSS). EPSS estimates a 0.65% chance of exploitation in the next 30 days.

Description

A potential security vulnerability has been identified with certain HP InkJet printers. The vulnerability could be exploited to allow cross-site scripting (XSS). Affected products and versions include: HP DeskJet 2600 All-in-One Printer series model numbers 4UJ28B, V1N01A - V1N08A, Y5H60A - Y5H80A; HP DeskJet Ink Advantage 2600 All-in-One Printer series model numbers V1N02A - V1N02B, Y5Z00A - Y5Z04B; HP DeskJet Ink Advantage 5000 All-in-One Printer series model numbers M2U86A - M2U89B; HP DeskJet Ink Advantage 5200 All-in-One Printer series model numbers M2U76A - M2U78B; HP ENVY 5000 All-in-One Printer series model numbers M2U85A - M2U85B, M2U91A - M2U94B, Z4A54A - Z4A74A; HP ENVY Photo 6200 All-in-One Printer series model numbers K7G18A-K7G26B, K7S21B, Y0K13D - Y0K15A; HP ENVY Photo 7100 All-in-One Printer series model numbers 3XD89A, K7G93A-K7G99A, Z3M37A - Z3M52A; HP ENVY Photo 7800 All-in-One Printer series model numbers K7R96A, K7S00A - K7S10D, Y0G42D - Y0G52B; HP Ink Tank Wireless 410 series model numbers Z4B53A - Z4B55A, Z6Z95A - Z6Z99A, 4DX94A - 4DX95A, 4YF79A, Z7A01A; HP OfficeJet 5200 All-in-One Printer series model numbers M2U75A, M2U81A-M2U84B, Z4B12A - Z4B14A, Z4B27A - Z4B29A; HP Smart Tank Wireless 450 series model numbers Z4B56A, Z6Z96A - Z6Z98A.

Metrics

CVSS 3.1
4.8/10

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

EPSS Probability
0.65%

46.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
HpDeskjet 2600 4uj28b Firmware< 1923
HpDeskjet 2600 V1n01a Firmware< 1923
HpDeskjet 2600 V1n08a Firmware< 1923
HpDeskjet 2600 Y5h60a Firmware< 1923
HpDeskjet 2600 Y5h80a Firmware< 1923
HpDeskjet Ink Advantage 2600 V1n02a Firmware< 1923
HpDeskjet Ink Advantage 2600 V1n02b Firmware< 1923
HpDeskjet Ink Advantage 2600 Y5z00a Firmware< 1923
HpDeskjet Ink Advantage 2600 Y5z04b Firmware<= 1923
HpDeskjet Ink Advantage 5000 M2u86a Firmware< 003.1925a
HpDeskjet Ink Advantage 5000 M2u89b Firmware< 003.1925a
HpDeskjet Ink Advantage 5200 M2u76a Firmware< 003.1925a
HpDeskjet Ink Advantage 5200 M2u78b Firmware< 003.1925a
HpEnvy 5000 M2u85a Firmware< 003.1925a
HpEnvy 5000 M2u85b Firmware< 003.1925a
HpEnvy 5000 M2u91a Firmware< 003.1925a
HpEnvy 5000 M2u94b Firmware< 003.1925a
HpEnvy 5000 Z4a54a Firmware< 003.1925a
HpEnvy 5000 Z4a74a Firmware< 003.1925a
HpEnvy Photo 6200 K7g18a Firmware< 003.1925a
HpEnvy Photo 6200 K7g26b Firmware< 003.1925a
HpEnvy Photo 6200 K7s21b Firmware< 003.1925a
HpEnvy Photo 6200 Y0k13d Firmware< 003.1925a
HpEnvy Photo 6200 Y0k15a Firmware< 003.1925a
HpEnvy Photo 7100 3xd89a Firmware< 003.1925a
HpEnvy Photo 7100 K7g93a Firmware< 003.1925a
HpEnvy Photo 7100 K7g99a Firmware< 003.1925a
HpEnvy Photo 7100 Z3m37a Firmware< 003.1925a
HpEnvy Photo 7100 Z3m52a Firmware< 003.1925a
HpEnvy Photo 7800 K7r96a Firmware< 003.1925a
HpEnvy Photo 7800 K7s00a Firmware< 003.1925a
HpEnvy Photo 7800 K7s10d Firmware< 003.1925a
HpEnvy Photo 7800 Y0g42d Firmware< 003.1925a
HpEnvy Photo 7800 Y0g52b Firmware< 003.1925a
HpInk Tank Wireless 410 Z4b53a Firmware< 1924
HpInk Tank Wireless 410 Z4b55a Firmware< 1924
HpInk Tank Wireless 410 Z6z95a Firmware< 1924
HpInk Tank Wireless 410 Z6z99a Firmware< 1924
HpInk Tank Wireless 410 4dx94a Firmware< 1924
HpInk Tank Wireless 410 4dx95a Firmware< 1924
HpInk Tank Wireless 410 4yf79a Firmware< 1924
HpInk Tank Wireless 410 Z7a01a Firmware< 1924
HpOfficejet 5200 M2u75a Firmware< 003.1925a
HpOfficejet 5200 M2u81a Firmware< 003.1925a
HpOfficejet 5200 M2u84b Firmware< 003.1925a
HpOfficejet 5200 Z4b12a Firmware< 003.1925a
HpOfficejet 5200 Z4b14a Firmware< 003.1925a
HpOfficejet 5200 Z4b27a Firmware< 003.1925a
HpOfficejet 5200 Z4b29a Firmware< 003.1925a
HpSmart Tank Wireless 450 Z4b56a Firmware< 1924

Showing 50 of 52 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-6332?
A potential security vulnerability has been identified with certain HP InkJet printers. The vulnerability could be exploited to allow cross-site scripting (XSS). Affected products and versions include: HP DeskJet 2600 All-in-One Printer series model numbers 4UJ28B, V1N01A - V1N08A, Y5H60A - Y5H80A; HP DeskJet Ink Advantage 2600 All-in-One Printer series model numbers V1N02A - V1N02B, Y5Z00A - Y5Z04B; HP DeskJet Ink Advantage 5000 All-in-One Printer series model numbers M2U86A - M2U89B; HP DeskJet Ink Advantage 5200 All-in-One Printer series model numbers M2U76A - M2U78B; HP ENVY 5000 All-in-One Printer series model numbers M2U85A - M2U85B, M2U91A - M2U94B, Z4A54A - Z4A74A; HP ENVY Photo 6200 All-in-One Printer series model numbers K7G18A-K7G26B, K7S21B, Y0K13D - Y0K15A; HP ENVY Photo 7100 All-in-One Printer series model numbers 3XD89A, K7G93A-K7G99A, Z3M37A - Z3M52A; HP ENVY Photo 7800 All-in-One Printer series model numbers K7R96A, K7S00A - K7S10D, Y0G42D - Y0G52B; HP Ink Tank Wireless 410 series model numbers Z4B53A - Z4B55A, Z6Z95A - Z6Z99A, 4DX94A - 4DX95A, 4YF79A, Z7A01A; HP OfficeJet 5200 All-in-One Printer series model numbers M2U75A, M2U81A-M2U84B, Z4B12A - Z4B14A, Z4B27A - Z4B29A; HP Smart Tank Wireless 450 series model numbers Z4B56A, Z6Z96A - Z6Z98A.
How severe is CVE-2019-6332?
CVE-2019-6332 has a CVSS score of 4.8/10 (MEDIUM severity). The EPSS model estimates a 0.65% probability of exploitation in the next 30 days.
How do I fix CVE-2019-6332?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-6332?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST