Vulnerabilities > HP > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-05-08 CVE-2023-22784 Classic Buffer Overflow vulnerability in HP Instantos
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211).
network
low complexity
hp CWE-120
critical
 9.8
9.8
2023-05-08 CVE-2023-22785 Classic Buffer Overflow vulnerability in HP Instantos
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211).
network
low complexity
hp CWE-120
critical
 9.8
9.8
2023-05-08 CVE-2023-22786 Classic Buffer Overflow vulnerability in HP Instantos
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211).
network
low complexity
hp CWE-120
critical
 9.8
9.8
2023-04-28 CVE-2023-27973 Out-of-bounds Write vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Heap Overflow and/or Remote Code Execution.
network
low complexity
hp CWE-787
critical
 9.8
9.8
2023-04-28 CVE-2023-27971 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Elevation of Privilege.
network
low complexity
hp CWE-120
critical
 9.8
9.8
2023-04-28 CVE-2023-27972 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Remote Code Execution.
network
low complexity
hp CWE-120
critical
 9.8
9.8
2023-02-06 CVE-2022-48311 Cross-site Scripting vulnerability in HP Deskjet 2540 A9U23B Firmware Cep1Fn1418Br
**UNSUPPORTED WHEN ASSIGNED** Cross Site Scripting (XSS) in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page.
network
low complexity
hp CWE-79
critical
 9.0
9.0
2022-12-12 CVE-2021-3437 Unspecified vulnerability in HP Omen Gaming HUB and Omen Gaming HUB SDK
Potential security vulnerabilities have been identified in an OMEN Gaming Hub SDK package which may allow escalation of privilege and/or denial of service.
network
low complexity
hp
critical
 9.8
9.8
2022-12-12 CVE-2021-3821 Unspecified vulnerability in HP Futuresmart 5
A potential security vulnerability has been identified for certain HP multifunction printers (MFPs).
network
low complexity
hp
critical
 9.8
9.8
2022-12-12 CVE-2021-3919 Unspecified vulnerability in HP Command Center and Omen Gaming HUB
A potential security vulnerability has been identified in OMEN Gaming Hub and in HP Command Center which may allow escalation of privilege and/or denial of service.
network
low complexity
hp
critical
 9.8
9.8