CVE-2019-6326: Buffer Overflow
First published: Mon Jun 17 2019(Updated: )
HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. 20190419), HP LaserJet Pro MFP M28-M31 Printer series (before v. 20190426) may have embedded web server attributes which may be potentially vulnerable to Buffer Overflow.
Credit: hp-security-alert@hp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP T6B80A | <2019-04-19 | |
| HP T6B80A Firmware | ||
| HP T6b83a Firmware | <2019-04-19 | |
| HP T6b83a Firmware | ||
| HP T6B81A | <2019-04-19 | |
| HP T6B81A Firmware | ||
| HP T6B82A | <2019-04-19 | |
| HP T6B82A Firmware | ||
| HP W2G54A | <2019-04-26 | |
| HP LaserJet Pro M14 | ||
| HP W2G55A Firmware | <2019-04-26 | |
| HP LaserJet Pro MFP M29 | ||
| HP Y5s53a | <2019-04-26 | |
| HP Y5s53a Firmware | ||
| HP Y5s55a | <2019-04-26 | |
| HP Y5s55a Firmware | ||
| HP Y5s50a Firmware | <2019-04-26 | |
| Hp Y5s50a Firmware | ||
| HP Y5s54a Firmware | <2019-04-26 | |
| HP Y5s54a Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-6326?
The severity of CVE-2019-6326 is classified as potentially high due to the buffer overflow vulnerability affecting the embedded web server.
How do I fix CVE-2019-6326?
To fix CVE-2019-6326, users should update their HP Color LaserJet Pro and HP LaserJet Pro MFP printer firmware to the latest versions released after April 2019.
Which HP printer models are affected by CVE-2019-6326?
The affected models include HP Color LaserJet Pro M280-M281 and HP LaserJet Pro MFP M28-M31 printer series prior to their respective firmware updates.
Can CVE-2019-6326 lead to unauthorized access?
Yes, CVE-2019-6326 can potentially allow attackers to leverage the buffer overflow vulnerability for unauthorized access to the printer's web server.
Is there a known workaround for CVE-2019-6326?
There are no specific known workarounds for CVE-2019-6326, so applying the firmware update is the recommended solution.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/author
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/hp
- canonical/hp t6b80a
- canonical/hp t6b80a firmware
- canonical/hp t6b83a firmware
- canonical/hp t6b81a
- canonical/hp t6b81a firmware
- canonical/hp t6b82a
- canonical/hp t6b82a firmware
- canonical/hp w2g54a
- canonical/hp laserjet pro m14
- canonical/hp w2g55a firmware
- canonical/hp laserjet pro mfp m29
- canonical/hp y5s53a
- canonical/hp y5s53a firmware
- canonical/hp y5s55a
- canonical/hp y5s55a firmware
- canonical/hp y5s50a firmware
- canonical/hp y5s54a firmware