What is the severity of CVE-2014-7894?

CVE-2014-7894 is rated as a critical vulnerability due to its ability to allow remote code execution.

How do I fix CVE-2014-7894?

To fix CVE-2014-7894, update to the latest version of the HP OLE Point of Sale drivers, version 1.13.003 or later.

Who is affected by CVE-2014-7894?

CVE-2014-7894 affects HP Point of Sale Windows PCs that use vulnerable OLE Point of Sale drivers.

What are the attack vectors for CVE-2014-7894?

The attack vectors for CVE-2014-7894 involve exploiting vulnerabilities in the OPOSPOSPrinter.ocx file associated with various thermal receipt printers.

What types of printers are impacted by CVE-2014-7894?

CVE-2014-7894 impacts several models of thermal receipt printers, including PUSB and SerialUSB printers, when using the affected OPOS drivers.

Vulnerability/
CVE-2014-7894

critical

9/3/2015

6/8/2024

CVE-2014-7894

First published: Mon Mar 09 2015(Updated: )

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSPOSPrinter.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid POS printers with MICR, Value PUSB Receipt printers, and Value Serial/USB Receipt printers, aka ZDI-CAN-2506.

Credit: hp-security-alert@hp.com

Affected Software	Affected Version	How to fix
HP OLE Point of Sale Driver	<=1.13.001
HP Hybrid POS Printer with MICR US FK184AA
HP PUSB Thermal Receipt Printer
HP PUSB Thermal Receipt Printer
HP Serial/USB Thermal Receipt Printer BM476AA
HP Value Serial/USB Receipt Printer F7M66AA

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-7894?
CVE-2014-7894 is rated as a critical vulnerability due to its ability to allow remote code execution.
How do I fix CVE-2014-7894?
To fix CVE-2014-7894, update to the latest version of the HP OLE Point of Sale drivers, version 1.13.003 or later.
Who is affected by CVE-2014-7894?
CVE-2014-7894 affects HP Point of Sale Windows PCs that use vulnerable OLE Point of Sale drivers.
What are the attack vectors for CVE-2014-7894?
The attack vectors for CVE-2014-7894 involve exploiting vulnerabilities in the OPOSPOSPrinter.ocx file associated with various thermal receipt printers.
What types of printers are impacted by CVE-2014-7894?
CVE-2014-7894 impacts several models of thermal receipt printers, including PUSB and SerialUSB printers, when using the affected OPOS drivers.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/hp
canonical/hp ole point of sale driver
version/hp ole point of sale driver/1.13.001
canonical/hp hybrid pos printer with micr us fk184aa
canonical/hp pusb thermal receipt printer
canonical/hp serial/usb thermal receipt printer bm476aa
canonical/hp value serial/usb receipt printer f7m66aa

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.