Vulnerability Description
HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. 20190419), HP LaserJet Pro MFP M28-M31 Printer series (before v. 20190426) may have an embedded web server potentially vulnerable to stored XSS in wireless configuration page
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | T6B80A Firmware | < 2019-04-19 |
| Hp | T6B80A | - |
| Hp | T6B83A Firmware | < 2019-04-19 |
| Hp | T6B83A | - |
| Hp | T6B81A Firmware | < 2019-04-19 |
| Hp | T6B81A | - |
| Hp | T6B82A Firmware | < 2019-04-19 |
| Hp | T6B82A | - |
| Hp | W2G54A Firmware | < 2019-04-26 |
| Hp | W2G54A | - |
| Hp | W2G55A Firmware | < 2019-04-26 |
| Hp | W2G55A | - |
| Hp | Y5S53A Firmware | < 2019-04-26 |
| Hp | Y5S53A | - |
| Hp | Y5S55A Firmware | < 2019-04-26 |
| Hp | Y5S55A | - |
| Hp | Y5S50A Firmware | < 2019-04-26 |
| Hp | Y5S50A | - |
| Hp | Y5S54A Firmware | < 2019-04-26 |
| Hp | Y5S54A | - |
Related Weaknesses (CWE)
References
- https://support.hp.com/us-en/document/c06356322Vendor Advisory
- https://support.hp.com/us-en/document/c06356322Vendor Advisory
FAQ
What is CVE-2019-6324?
CVE-2019-6324 is a vulnerability with a CVSS score of 4.8 (MEDIUM). HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. 20190419), HP LaserJet Pro MFP M28-M31 Printer series (before v. 20190426) may have an embedded web server potentially vulnerabl...
How severe is CVE-2019-6324?
CVE-2019-6324 has been rated MEDIUM with a CVSS base score of 4.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-6324?
Check the references section above for vendor advisories and patch information. Affected products include: Hp T6B80A Firmware, Hp T6B80A, Hp T6B83A Firmware, Hp T6B83A, Hp T6B81A Firmware.