MEDIUM🇬🇧 English

CVE-2026-1997

CVSS 6.9v4.0pub. 2026-02-10upd. 2026-02-12

Certain HP OfficeJet Pro printers may expose information if Cross‑Origin Resource Sharing (CORS) is misconfigured, potentially allowing unauthorized web origins to access device resource. CORS is disabled by default on Pro‑class devices and can only be enabled by an administrator through the Embedded Web Server (EWS). Keeping CORS disabled unless explicitly required helps ensure that only trusted solutions can interact with the device.

oryginał EN
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • HP D9l18a

    HW
    Hp
    wszystkie wersje
  • HP D9l18a Firmware

    OS
    Hp
    < 001.2602a
  • HP D9l20a

    HW
    Hp
    wszystkie wersje
  • HP D9l20a Firmware

    OS
    Hp
    < 001.2602b
  • HP D9l21a

    HW
    Hp
    wszystkie wersje
  • HP D9l21a Firmware

    OS
    Hp
    < 001.2602b
  • HP D9l63a

    HW
    Hp
    wszystkie wersje
  • HP D9l63a Firmware

    OS
    Hp
    < 001.2602b
  • HP D9l64a

    HW
    Hp
    wszystkie wersje
  • HP D9l64a Firmware

    OS
    Hp
    < 001.2602b
  • HP G5j38a

    HW
    Hp
    wszystkie wersje
  • HP G5j38a Firmware

    OS
    Hp
    < 001.2602a
  • HP G5j56a

    HW
    Hp
    wszystkie wersje
  • HP G5j56a Firmware

    OS
    Hp
    < 001.2602a
  • HP J3p65a

    HW
    Hp
    wszystkie wersje
  • HP J3p65a Firmware

    OS
    Hp
    < 001.2602b
  • HP J3p66a

    HW
    Hp
    wszystkie wersje
  • HP J3p66a Firmware

    OS
    Hp
    < 001.2602b
  • HP J3p67a

    HW
    Hp
    wszystkie wersje
  • HP J3p67a Firmware

    OS
    Hp
    < 001.2602b
  • HP J3p68a

    HW
    Hp
    wszystkie wersje
  • HP J3p68a Firmware

    OS
    Hp
    < 001.2602b
  • HP J6x76a

    HW
    Hp
    wszystkie wersje
  • HP J6x76a Firmware

    OS
    Hp
    < 001.2602a
  • HP J6x77a

    HW
    Hp
    wszystkie wersje
  • HP J6x77a Firmware

    OS
    Hp
    < 001.2602a
  • HP J6x78a

    HW
    Hp
    wszystkie wersje
  • HP J6x78a Firmware

    OS
    Hp
    < 001.2602a
  • HP J6x79a

    HW
    Hp
    wszystkie wersje
  • HP J6x79a Firmware

    OS
    Hp
    < 001.2602a
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2022-28722CRITICAL9.8ten sam produkt

Certain HP Print Products are potentially vulnerable to Buffer Overflow.

CVE-2019-10627CRITICAL9.8ten sam produkt

Integer overflow to buffer overflow vulnerability in PostScript image handling code used by the PostScript- an...

CVE-2017-2741CRITICAL9.8ten sam produkt

A potential security vulnerability has been identified with HP PageWide Printers, HP OfficeJet Pro Printers, w...

CVE-2026-1996MEDIUM6.9ten sam produkt

Certain HP OfficeJet Pro printers may be vulnerable to potential denial of service when the IPP requests are m...

CVE-2019-6337MEDIUM5.2ten sam produkt

For the printers listed a maliciously crafted print file might cause certain HP Inkjet printers to assert. Und...

CVE-2026-1997 — MEDIUM 6.9 | CVEbaza.pl