1. Home
  2. CVE Database
  3. CVE-2019-6327
CRITICAL · 9.8

CVE-2019-6327

HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. 20190419), HP LaserJet Pro MFP M28-M31 Printer series (before v. 20190426) may have an IPP Parser potentially vulnerable to Buff...

Vulnerability Description

HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. 20190419), HP LaserJet Pro MFP M28-M31 Printer series (before v. 20190426) may have an IPP Parser potentially vulnerable to Buffer Overflow.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
HpLaserjet Pro M280-M281 T6B80A Firmware< 20190419
HpLaserjet Pro M280-M281 T6B80A-
HpLaserjet Pro M280-M281 T6B83A Firmware< 20190419
HpLaserjet Pro M280-M281 T6B83A-
HpLaserjet Pro M280-M281 T6B81A Firmware< 20190419
HpLaserjet Pro M280-M281 T6B81A-
HpLaserjet Pro M280-M281 T6B82A Firmware< 20190419
HpLaserjet Pro M280-M281 T6B82A-
HpLaserjet Pro Mfp M28-M31 W2G54A Firmware< 20190426
HpLaserjet Pro Mfp M28-M31 W2G54A-
HpLaserjet Pro Mfp M28-M31 W2G55A Firmware< 20190426
HpLaserjet Pro Mfp M28-M31 W2G55A-
HpLaserjet Pro Mfp M28-M31 Y5S53A Firmware< 20190426
HpLaserjet Pro Mfp M28-M31 Y5S53A-
HpLaserjet Pro Mfp M28-M31 Y5S55A Firmware< 20190426
HpLaserjet Pro Mfp M28-M31 Y5S55A-
HpLaserjet Pro Mfp M28-M31 Y5S50A Firmware< 20190426
HpLaserjet Pro Mfp M28-M31 Y5S50A-
HpLaserjet Pro Mfp M28-M31 Y5S54A Firmware< 20190426
HpLaserjet Pro Mfp M28-M31 Y5S54A-

Related Weaknesses (CWE)

CWE-120

References

FAQ

What is CVE-2019-6327?

CVE-2019-6327 is a vulnerability with a CVSS score of 9.8 (CRITICAL). HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. 20190419), HP LaserJet Pro MFP M28-M31 Printer series (before v. 20190426) may have an IPP Parser potentially vulnerable to Buff...

How severe is CVE-2019-6327?

CVE-2019-6327 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2019-6327?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Laserjet Pro M280-M281 T6B80A Firmware, Hp Laserjet Pro M280-M281 T6B80A, Hp Laserjet Pro M280-M281 T6B83A Firmware, Hp Laserjet Pro M280-M281 T6B83A, Hp Laserjet Pro M280-M281 T6B81A Firmware.