First published: Tue Nov 09 2021(Updated: )
A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
HP PageWide Pro 577z | <001.1937d | |
HP PageWide Pro 577z | ||
HP PageWide Pro 577z | <001.1937d | |
HP PageWide Pro 577z | ||
HP PageWide Pro 577z | <001.1937d | |
HP PageWide Pro 577z | ||
HP PageWide Pro 577dw | <001.1937d | |
HP PageWide Pro 577dw | ||
HP PageWide Pro 577dw | <001.1937d | |
HP PageWide Pro 577dw | ||
HP PageWide Pro 577dw D3Q21C Firmware | <001.1937d | |
HP PageWide Pro 577dw D3Q21C Firmware | ||
HP PageWide Pro 577dw Firmware | <001.1937d | |
HP PageWide Pro 577dw | ||
HP PageWide Pro 552dw Firmware | <001.1937d | |
HP PageWide Pro 552dw | ||
HP PageWide Pro 552dw | <001.1937d | |
HP PageWide Pro 552dw | ||
HP PageWide Pro 552dw | <001.1937d | |
HP PageWide Pro 552dw | ||
HP PageWide Pro 552dw firmware | <001.1937d | |
HP PageWide Pro 552dw firmware | ||
HP PageWide Pro 552dw firmware | <001.1937d | |
HP PageWide Pro 552dw | ||
HP PageWide Pro 477dw Firmware | <001.1937d | |
HP PageWide Pro 477dw | ||
HP PageWide Pro 477dw Firmware | <001.1937d | |
HP PageWide Pro 477dw | ||
HP PageWide Pro 477dw | <001.1937d | |
HP PageWide Pro 477dw | ||
HP PageWide Pro 477dw | <001.1937d | |
HP PageWide Pro 477dw | ||
HP PageWide Pro 477dw Firmware | <001.1937d | |
HP PageWide Pro 477dw | ||
HP PageWide Pro 477dn | <001.1937d | |
HP PageWide Pro 477dn | ||
HP PageWide Pro 477dn | <001.1937d | |
HP PageWide Pro 477dn | ||
HP PageWide Pro 477dn | <001.1937d | |
HP PageWide Pro 477dn | ||
HP PageWide Pro 452dw firmware | <001.1937d | |
HP PageWide Pro 452dw firmware | ||
HP PageWide Pro 452dw | <001.1937d | |
HP PageWide Pro 452dw | ||
HP PageWide Pro 452dw | <001.1937d | |
HP PageWide Pro 452dw | ||
HP PageWide Pro 452dn | <001.1937d | |
HP PageWide Pro 452dn | ||
HP PageWide Pro 452dn | <001.1937d | |
HP PageWide Pro 452dn | ||
HP PageWide Pro 452dn | <001.1937d | |
HP PageWide Pro 452dn | ||
HP PageWide Managed P52750dw | <001.1937d | |
HP PageWide Managed P52750dw | ||
HP PageWide Managed P52750dw | <001.1937d | |
HP PageWide Managed P52750dw | ||
HP PageWide Managed P52750dw Firmware | <001.1937d | |
HP PageWide Managed p52750dw j9v82a firmware | ||
HP PageWide Managed P57750dw | <001.1937d | |
HP PageWide Managed P57750dw | ||
HP PageWide Managed P57750dw Multifunction Printer | <001.1937d | |
HP PageWide managed p57750dw | ||
HP PageWide managed p57750dw | <001.1937d | |
HP PageWide Managed P57750dw J9V82A Firmware | ||
HP PageWide Managed P55250dw Firmware | <001.1937d | |
HP PageWide Managed P55250dw | ||
HP PageWide Managed p55250dw | <001.1937d | |
HP PageWide Managed p55250dw | ||
HP PageWide Managed P55250dw Firmware | <001.1937d | |
HP PageWide Managed P55250dw J6U55A Firmware | ||
HP PageWide 377dw | <001.1937d | |
HP PageWide 377dw | ||
HP PageWide 377dw | <001.1937d | |
HP PageWide 377dw J9V80A Firmware | ||
HP PageWide 352dw | <001.1937d | |
HP PageWide 352dw | ||
HP PageWide 352dw | <001.1937d | |
HP PageWide 352dw | ||
HP OfficeJet Pro 8210 | <001.1937c | |
HP OfficeJet Pro 8210 | ||
HP OfficeJet Pro 8210 | <001.1937c | |
HP OfficeJet Pro 8210 | ||
HP OfficeJet Pro 8210 | <001.1937c | |
HP OfficeJet Pro 8210 | ||
HP OfficeJet Pro 8210 | <001.1937c | |
HP OfficeJet Pro 8210 | ||
HP OfficeJet Pro 8210 | <001.1937c | |
HP OfficeJet Pro 8210 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-16240 is classified as a critical severity vulnerability due to its potential impact on affected HP printers.
To remediate CVE-2019-16240, update the firmware of affected HP OfficeJet Pro and PageWide printers to version 001.1937C or later.
CVE-2019-16240 affects various models of HP OfficeJet Pro and PageWide printers that are running firmware prior to version 001.1937C or D.
CVE-2019-16240 exploits buffer overflow and information disclosure vulnerabilities that occur when processing a maliciously crafted print file.
Currently, applying the firmware update is the recommended and only effective means to mitigate the risks associated with CVE-2019-16240.