exploitDog

CVE-2024-9419

Опубликовано: 30 окт. 2024

Источник: nvd

CVSS3: 7.8

CVSS3: 9.8

EPSS Низкий

Описание

Client / Server PCs with the HP Smart Universal Printing Driver installed are potentially vulnerable to Remote Code Execution and/or Elevation of Privilege. A client using the HP Smart Universal Printing Driver that sends a print job comprised of a malicious XPS file could potentially lead to Remote Code Execution and/or Elevation of Privilege on the PC.

Ссылки

https://support.hp.com/us-en/document/ish_11505949-11505972-16
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hp:smart_universal_printing_driver:*:*:*:*:*:*:*:*

Версия до 4.07.1.3204 (исключая)

EPSS

Процентиль: 80%

0.01456

Низкий

7.8 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-787

Связанные уязвимости

GHSA-78fm-rcjq-jr27

CVSS3: 7.8

github

больше 1 года назад

Client / Server PCs with the HP Smart Universal Printing Driver installed are potentially vulnerable to Remote Code Execution and/or Elevation of Privilege. A client using the HP Smart Universal Printing Driver that sends a print job comprised of a malicious XPS file could potentially lead to Remote Code Execution and/or Elevation of Privilege on the PC.

EPSS

Процентиль: 80%

0.01456

Низкий

7.8 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-787