CVE-2018-5924
Severity CVSS v4.0:
Pending analysis
Type:
CWE-787
Out-of-bounds Write
Publication date:
13/08/2018
Last modified:
17/06/2026
Description
A security vulnerability has been identified with certain HP Inkjet printers. A maliciously crafted file sent to an affected device can cause a stack buffer overflow, which could allow remote code execution.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:hp:t8x44_firmware:1828a:*:*:*:*:*:*:* | ||
| cpe:2.3:h:hp:t8x44:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:hp:3aw51a_firmware:1828a:*:*:*:*:*:*:* | ||
| cpe:2.3:h:hp:3aw51a:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:hp:a9u28b_firmware:1828b:*:*:*:*:*:*:* | ||
| cpe:2.3:h:hp:a9u28b:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:hp:d3a82a_firmware:1828b:*:*:*:*:*:*:* | ||
| cpe:2.3:h:hp:d3a82a:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:hp:v1n08a_firmware:1828a:*:*:*:*:*:*:* | ||
| cpe:2.3:h:hp:v1n08a:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:hp:y5h80a_firmware:1828a:*:*:*:*:*:*:* | ||
| cpe:2.3:h:hp:y5h80a:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:hp:d4h24b_firmware:1826a:*:*:*:*:*:*:* | ||
| cpe:2.3:h:hp:d4h24b:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:hp:f5s57a_firmware:1829a:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.securityfocus.com/bid/105010
- http://www.securitytracker.com/id/1041415
- https://research.checkpoint.com/sending-fax-back-to-the-dark-ages/
- https://support.hp.com/us-en/document/c06097712
- http://www.securityfocus.com/bid/105010
- http://www.securitytracker.com/id/1041415
- https://research.checkpoint.com/sending-fax-back-to-the-dark-ages/
- https://support.hp.com/us-en/document/c06097712



