CWE
120 119
Advisory Published
Updated

CVE-2019-16240: Buffer Overflow

First published: Tue Nov 09 2021(Updated: )

A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
HP PageWide Pro 577z<001.1937d
HP PageWide Pro 577z
HP PageWide Pro 577z<001.1937d
HP PageWide Pro 577z
HP PageWide Pro 577z<001.1937d
HP PageWide Pro 577z
HP PageWide Pro 577dw<001.1937d
HP PageWide Pro 577dw
HP PageWide Pro 577dw<001.1937d
HP PageWide Pro 577dw
HP PageWide Pro 577dw D3Q21C Firmware<001.1937d
HP PageWide Pro 577dw D3Q21C Firmware
HP PageWide Pro 577dw Firmware<001.1937d
HP PageWide Pro 577dw
HP PageWide Pro 552dw Firmware<001.1937d
HP PageWide Pro 552dw
HP PageWide Pro 552dw<001.1937d
HP PageWide Pro 552dw
HP PageWide Pro 552dw<001.1937d
HP PageWide Pro 552dw
HP PageWide Pro 552dw firmware<001.1937d
HP PageWide Pro 552dw firmware
HP PageWide Pro 552dw firmware<001.1937d
HP PageWide Pro 552dw
HP PageWide Pro 477dw Firmware<001.1937d
HP PageWide Pro 477dw
HP PageWide Pro 477dw Firmware<001.1937d
HP PageWide Pro 477dw
HP PageWide Pro 477dw<001.1937d
HP PageWide Pro 477dw
HP PageWide Pro 477dw<001.1937d
HP PageWide Pro 477dw
HP PageWide Pro 477dw Firmware<001.1937d
HP PageWide Pro 477dw
HP PageWide Pro 477dn<001.1937d
HP PageWide Pro 477dn
HP PageWide Pro 477dn<001.1937d
HP PageWide Pro 477dn
HP PageWide Pro 477dn<001.1937d
HP PageWide Pro 477dn
HP PageWide Pro 452dw firmware<001.1937d
HP PageWide Pro 452dw firmware
HP PageWide Pro 452dw<001.1937d
HP PageWide Pro 452dw
HP PageWide Pro 452dw<001.1937d
HP PageWide Pro 452dw
HP PageWide Pro 452dn<001.1937d
HP PageWide Pro 452dn
HP PageWide Pro 452dn<001.1937d
HP PageWide Pro 452dn
HP PageWide Pro 452dn<001.1937d
HP PageWide Pro 452dn
HP PageWide Managed P52750dw<001.1937d
HP PageWide Managed P52750dw
HP PageWide Managed P52750dw<001.1937d
HP PageWide Managed P52750dw
HP PageWide Managed P52750dw Firmware<001.1937d
HP PageWide Managed p52750dw j9v82a firmware
HP PageWide Managed P57750dw<001.1937d
HP PageWide Managed P57750dw
HP PageWide Managed P57750dw Multifunction Printer<001.1937d
HP PageWide managed p57750dw
HP PageWide managed p57750dw<001.1937d
HP PageWide Managed P57750dw J9V82A Firmware
HP PageWide Managed P55250dw Firmware<001.1937d
HP PageWide Managed P55250dw
HP PageWide Managed p55250dw<001.1937d
HP PageWide Managed p55250dw
HP PageWide Managed P55250dw Firmware<001.1937d
HP PageWide Managed P55250dw J6U55A Firmware
HP PageWide 377dw<001.1937d
HP PageWide 377dw
HP PageWide 377dw<001.1937d
HP PageWide 377dw J9V80A Firmware
HP PageWide 352dw<001.1937d
HP PageWide 352dw
HP PageWide 352dw<001.1937d
HP PageWide 352dw
HP OfficeJet Pro 8210<001.1937c
HP OfficeJet Pro 8210
HP OfficeJet Pro 8210<001.1937c
HP OfficeJet Pro 8210
HP OfficeJet Pro 8210<001.1937c
HP OfficeJet Pro 8210
HP OfficeJet Pro 8210<001.1937c
HP OfficeJet Pro 8210
HP OfficeJet Pro 8210<001.1937c
HP OfficeJet Pro 8210

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is the severity of CVE-2019-16240?

    CVE-2019-16240 is classified as a critical severity vulnerability due to its potential impact on affected HP printers.

  • How do I fix CVE-2019-16240?

    To remediate CVE-2019-16240, update the firmware of affected HP OfficeJet Pro and PageWide printers to version 001.1937C or later.

  • Which HP printers are affected by CVE-2019-16240?

    CVE-2019-16240 affects various models of HP OfficeJet Pro and PageWide printers that are running firmware prior to version 001.1937C or D.

  • What vulnerabilities does CVE-2019-16240 exploit?

    CVE-2019-16240 exploits buffer overflow and information disclosure vulnerabilities that occur when processing a maliciously crafted print file.

  • Is a workaround available for CVE-2019-16240?

    Currently, applying the firmware update is the recommended and only effective means to mitigate the risks associated with CVE-2019-16240.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203