CVE-2019-6334
CRITICALCVSS 9.8/10EPSS 3.62%
Last modified
CVE-2019-6334 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code.. EPSS estimates a 3.62% chance of exploitation in the next 30 days.
Description
HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Hp | Futuresmart 3 | < 2309021_581893 |
| Hp | Futuresmart 3 | < 2309021_581898 |
| Hp | Futuresmart 4 | < 2408067_049135 |
| Hp | Futuresmart 3 | < 2309021_581886 |
| Hp | Futuresmart 4 | < 2408067_049141 |
| Hp | Futuresmart 3 | < 2309021_581895 |
| Hp | Futuresmart 4 | < 2408067_049131 |
| Hp | Futuresmart 4 | < 2408067_049158 |
| Hp | Futuresmart 3 | < 2309021_581902 |
| Hp | Futuresmart 4 | < 2408067_049164 |
| Hp | Futuresmart 3 | < 2309021_581899 |
| Hp | Futuresmart 4 | < 2408067_049127 |
| Hp | Futuresmart 3 | < 2309021_581889 |
| Hp | Futuresmart 4 | < 2408071_000209 |
| Hp | Futuresmart 3 | < 2309021_581900 |
| Hp | Futuresmart 4 | < 2408067_049134 |
| Hp | Futuresmart 4 | < 2408071_000205 |
| Hp | Futuresmart 3 | < 2309021_581892 |
| Hp | Futuresmart 4 | < 2408071_000142 |
| Hp | Futuresmart 4 | < 2408071_000121 |
| Hp | Futuresmart 4 | < 2408071_000187 |
| Hp | Futuresmart 3 | < 2309021_581909 |
| Hp | Futuresmart 3 | < 2309021_581910 |
| Hp | Futuresmart 4 | < 2408067_049137 |
| Hp | Futuresmart 3 | < 2309021_581897 |
| Hp | Futuresmart 4 | < 2408067_049133 |
| Hp | Futuresmart 3 | < 2309021_581908 |
| Hp | Futuresmart 3 | < 2309021_581906 |
| Hp | Futuresmart 4 | < 2408067_049139 |
| Hp | Futuresmart 3 | < 2309021_581905 |
| Hp | Futuresmart 3 | < 2309021_581882 |
| Hp | Futuresmart 4 | < 2408067_049129 |
| Hp | Futuresmart 3 | < 2309021_581896 |
| Hp | Futuresmart 4 | < 2408067_049128 |
| Hp | Futuresmart 3 | < 2309021_581901 |
| Hp | Futuresmart 3 | < 2309021_581888 |
| Hp | Futuresmart 4 | < 2408067_049155 |
| Hp | Futuresmart 4 | < 2408067_049154 |
| Hp | Futuresmart 3 | < 2309021_581887 |
| Hp | Futuresmart 4 | < 2408067_049146 |
| Hp | Futuresmart 4 | < 2408067_049153 |
| Hp | Futuresmart 3 | < 2309021_581903 |
| Hp | Futuresmart 4 | < 2408067_049167 |
| Hp | Futuresmart 3 | < 2309021_581883 |
| Hp | Futuresmart 4 | < 2408071_000203 |
| Hp | Futuresmart 4 | < 2408071_000190 |
| Hp | Futuresmart 4 | < 2408071_000197 |
| Hp | Futuresmart 3 | < 2309021_581904 |
| Hp | Futuresmart 4 | < 2408067_049132 |
| Hp | Futuresmart 4 | < 2408071_000181 |
Showing 50 of 66 affected configurations. See NVD for the full list.
References
- https://support.hp.com/us-en/document/c06447795Vendor Advisory
- https://support.hp.com/us-en/document/c06447795Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-6334?
HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code.
How severe is CVE-2019-6334?
CVE-2019-6334 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 3.62% probability of exploitation in the next 30 days.
How do I fix CVE-2019-6334?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2019-6334?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST