Vulnerability Description
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element.
CVSS Score
7.3
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | 2Zn49A Firmware | - |
| Hp | 2Zn49A | - |
| Hp | 2Zn50A Firmware | - |
| Hp | 2Zn50A | - |
| Hp | 2Ky38A Firmware | - |
| Hp | 2Ky38A | - |
| Hp | W7U01A Firmware | - |
| Hp | W7U01A | - |
| Hp | W7U02A Firmware | - |
| Hp | W7U02A | - |
| Hp | 1Vr14A Firmware | - |
| Hp | 1Vr14A | - |
| Hp | 7Uq76A Firmware | - |
| Hp | 7Uq76A | - |
| Hp | 7Ab26A Firmware | - |
| Hp | 7Ab26A | - |
| Hp | 7Zb25A Firmware | - |
| Hp | 7Zb25A | - |
| Hp | 7Zb72A Firmware | - |
| Hp | 7Zb72A | - |
Related Weaknesses (CWE)
References
- https://support.hp.com/us-en/document/ish_8947379-8947403-16/hpsbpi03857Vendor Advisory
- https://support.hp.com/us-en/document/ish_8947379-8947403-16/hpsbpi03857Vendor Advisory
FAQ
What is CVE-2022-4894?
CVE-2022-4894 is a vulnerability with a CVSS score of 7.3 (HIGH). Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element.
How severe is CVE-2022-4894?
CVE-2022-4894 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-4894?
Check the references section above for vendor advisories and patch information. Affected products include: Hp 2Zn49A Firmware, Hp 2Zn49A, Hp 2Zn50A Firmware, Hp 2Zn50A, Hp 2Ky38A Firmware.