CVE-2019-6334 — CRITICAL (9.8)

Q: What is CVE-2019-6334?

CVE-2019-6334 is a vulnerability with a CVSS score of 9.8 (CRITICAL). HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code.

Q: How severe is CVE-2019-6334?

CVE-2019-6334 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2019-6334?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Futuresmart 3, Hp Laserjet Cm4540 Mfp Cc419A, Hp Laserjet Cm4540 Mfp Cc420A, Hp Laserjet Cm4540 Mfp Cc421A, Hp Futuresmart 4.

Vulnerability Description

HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Hp	Futuresmart 3	< 2309021_581893
Hp	Laserjet Cm4540 Mfp Cc419A	-
Hp	Laserjet Cm4540 Mfp Cc420A	-
Hp	Laserjet Cm4540 Mfp Cc421A	-
Hp	Futuresmart 4	< 2408067_049135
Hp	Laserjet Enterprise Flow Mfp M880Z A2W75A	-
Hp	Laserjet Enterprise Flow Mfp M880Z A2W76A	-
Hp	Laserjet Enterprise Flow Mfp M880Z D7P70A	-
Hp	Laserjet Enterprise Flow Mfp M880Z D7P71A	-
Hp	Laserjet Enterprise Flow Mfp M880Z L3U51A	-
Hp	Laserjet Enterprise Flow Mfp M880Z L3U52A	-
Hp	Laserjet Managed Flow Mfp M880Zm A2W75A	-
Hp	Laserjet Managed Flow Mfp M880Zm A2W76A	-
Hp	Laserjet Managed Flow Mfp M880Zm D7P70A	-
Hp	Laserjet Managed Flow Mfp M880Zm D7P71A	-
Hp	Laserjet Managed Flow Mfp M880Zm L3U51A	-
Hp	Laserjet Managed Flow Mfp M880Zm L3U52A	-
Hp	Laserjet Enterprise M552 B5L23A	-
Hp	Laserjet Enterprise M553 B5L24A	-
Hp	Laserjet Enterprise M553 B5L25A	-

References

https://support.hp.com/us-en/document/c06447795Vendor Advisory
https://support.hp.com/us-en/document/c06447795Vendor Advisory

FAQ

What is CVE-2019-6334?

CVE-2019-6334 is a vulnerability with a CVSS score of 9.8 (CRITICAL). HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code.

How severe is CVE-2019-6334?

CVE-2019-6334 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2019-6334?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Futuresmart 3, Hp Laserjet Cm4540 Mfp Cc419A, Hp Laserjet Cm4540 Mfp Cc420A, Hp Laserjet Cm4540 Mfp Cc421A, Hp Futuresmart 4.