Lucene search

[email protected]NVD:CVE-2024-0794

HistoryFeb 20, 2024 - 6:15 p.m.

CVE-2024-0794

2024-02-2018:15:50

CWE-121

[email protected]

web.nvd.nist.gov

printer

remote code execution

vulnerability

pdf

buffer overflow

font rendering

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

28.9%

JSON

Certain HP LaserJet Pro, HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially vulnerable to Remote Code Execution due to buffer overflow when rendering fonts embedded in a PDF file.

References

support.hp.com/us-en/document/ish_10174031-10198670-16

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

28.9%

JSON

Related for NVD:CVE-2024-0794

prion1 cvelist1 hp1 zdi1 cve1 openvas1 vulnrichment1