CVE-2022-4894
HIGHCVSS 7.3/10EPSS 0.19%
Last modified
CVE-2022-4894 is a high-severity vulnerability rated 7.3/10 on the CVSS scale. Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element.. EPSS estimates a 0.19% chance of exploitation in the next 30 days.
Description
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Hp | 2zn49a Firmware | All versions |
| Hp | 2zn50a Firmware | All versions |
| Hp | 2ky38a Firmware | All versions |
| Hp | W7u01a Firmware | All versions |
| Hp | W7u02a Firmware | All versions |
| Hp | 1vr14a Firmware | All versions |
| Hp | 7uq76a Firmware | All versions |
| Hp | 7ab26a Firmware | All versions |
| Hp | 7zb25a Firmware | All versions |
| Hp | 7zb72a Firmware | All versions |
| Hp | 8af49a Firmware | All versions |
| Hp | 8af50a Firmware | All versions |
| Hp | 8af51a Firmware | All versions |
| Hp | 8af52a Firmware | All versions |
| Hp | 7zb20a Firmware | All versions |
| Hp | 7zb19a Firmware | All versions |
| Hp | 7zb21a Firmware | All versions |
| Hp | 4zb81a Firmware | All versions |
| Hp | 5ue14a Firmware | All versions |
| Hp | 209u7a Firmware | All versions |
| Hp | 4zb79a Firmware | All versions |
| Hp | 4zb80a Firmware | All versions |
| Hp | 4zb92a Firmware | All versions |
| Hp | 4zb93a Firmware | All versions |
| Hp | 4zb82a Firmware | All versions |
| Hp | 6hu10a Firmware | All versions |
| Hp | 5ue15a Firmware | All versions |
| Hp | 4zb83a Firmware | All versions |
| Hp | 6hu11a Firmware | All versions |
| Hp | 4zb85a Firmware | All versions |
| Hp | 4zb87a Firmware | All versions |
| Hp | 4zb86a Firmware | All versions |
| Hp | 9vv52a Firmware | All versions |
| Hp | 4zb84a Firmware | All versions |
| Hp | 6hu12a Firmware | All versions |
| Hp | 4zb91a Firmware | All versions |
| Hp | 4zb88a Firmware | All versions |
| Hp | 4zb89a Firmware | All versions |
| Hp | 4zb90a Firmware | All versions |
| Hp | 4zb94a Firmware | All versions |
| Hp | 4zb95a Firmware | All versions |
| Hp | 4zb96a Firmware | All versions |
| Hp | 4zb97a Firmware | All versions |
| Hp | 6hu08a Firmware | All versions |
| Hp | 6hu09a Firmware | All versions |
| Hp | 714z6a Firmware | All versions |
| Hp | 714z7a Firmware | All versions |
| Hp | 714z8a Firmware | All versions |
| Hp | 714z9a Firmware | All versions |
| Hp | 715a0a Firmware | All versions |
Showing 50 of 1023 affected configurations. See NVD for the full list.
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-4894?
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element.
How severe is CVE-2022-4894?
CVE-2022-4894 has a CVSS score of 7.3/10 (HIGH severity). The EPSS model estimates a 0.19% probability of exploitation in the next 30 days.
How do I fix CVE-2022-4894?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2022-4894?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST