Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-16240

A Buffer Overflow and Information Disclosure issue exists in HP OfficeJet Pro Printers before 001.1937C, and HP PageWide Managed Printers and HP PageWide Pro Printers before 001.1937D exists; A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device.

Security Impact Summary

This vulnerability carries a CRITICAL severity rating with a CVSS v3.1 score of 9.1, indicating it can be exploited remotely over the network with relatively low complexity without requiring user interaction and does not require pre-existing privileges . The vulnerability impacts confidentiality (data exposure), and availability (service disruption) for affected systems. Impacting 88 products from hp, from hp, from hp and 85 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Reported in 2021, this vulnerability emerged during an era marked by increased sophistication in supply chain attacks, cloud infrastructure vulnerabilities, and software-as-a-service (SaaS) security challenges. Security practices during this period emphasized zero-trust architectures, container security, and API protection.

Published

2021-11-09T15:15:08.490

Last Modified

2024-11-21T04:30:21.290

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.1 (CRITICAL)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:N/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

4.9

Weaknesses

Type: Primary
CWE-120

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	hp	pagewide_pro_577z_k9z76a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_577z_k9z76a	-	No
Operating System	hp	pagewide_pro_577z_k9z76b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_577z_k9z76b	-	No
Operating System	hp	pagewide_pro_577z_k9z76d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_577z_k9z76d	-	No
Operating System	hp	pagewide_pro_577dw_d3q21a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_577dw_d3q21a	-	No
Operating System	hp	pagewide_pro_577dw_d3q21b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_577dw_d3q21b	-	No
Operating System	hp	pagewide_pro_577dw_d3q21c_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_577dw_d3q21c	-	No
Operating System	hp	pagewide_pro_577dw_d3q21d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_577dw_d3q21d	-	No
Operating System	hp	pagewide_pro_552dw_2dr21d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_552dw_2dr21d	-	No
Operating System	hp	pagewide_pro_552dw_d3q17a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_552dw_d3q17a	-	No
Operating System	hp	pagewide_pro_552dw_d3q17d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_552dw_d3q17d	-	No
Operating System	hp	pagewide_pro_552dw_k9z74a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_552dw_k9z74a	-	No
Operating System	hp	pagewide_pro_552dw_k9z74d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_552dw_k9z74d	-	No
Operating System	hp	pagewide_pro_477dw_d3q20a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_477dw_d3q20a	-	No
Operating System	hp	pagewide_pro_477dw_d3q20b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_477dw_d3q20b	-	No
Operating System	hp	pagewide_pro_477dw_d3q20c_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_477dw_d3q20c	-	No
Operating System	hp	pagewide_pro_477dw_d3q20d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_477dw_d3q20d	-	No
Operating System	hp	pagewide_pro_477dw_w2z53b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_477dw_w2z53b	-	No
Operating System	hp	pagewide_pro_477dn_d3q19d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_477dn_d3q19d	-	No
Operating System	hp	pagewide_pro_477dn_d3q19b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_477dn_d3q19b	-	No
Operating System	hp	pagewide_pro_477dn_d3q19a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_477dn_d3q19a	-	No
Operating System	hp	pagewide_pro_452dw_w2z52b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_452dw_w2z52b	-	No
Operating System	hp	pagewide_pro_452dw_d3q16d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_452dw_d3q16d	-	No
Operating System	hp	pagewide_pro_452dw_d3q16a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_452dw_d3q16a	-	No
Operating System	hp	pagewide_pro_452dn_d3q15d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_452dn_d3q15d	-	No
Operating System	hp	pagewide_pro_452dn_d3q15b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_452dn_d3q15b	-	No
Operating System	hp	pagewide_pro_452dn_d3q15a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_pro_452dn_d3q15a	-	No
Operating System	hp	pagewide_managed_p52750dw_j9v78b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_managed_p52750dw_j9v78b	-	No
Operating System	hp	pagewide_managed_p52750dw_j9v82d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_managed_p52750dw_j9v82d	-	No
Operating System	hp	pagewide_managed_p52750dw_j9v82a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_managed_p52750dw_j9v82a	-	No
Operating System	hp	pagewide_managed_p57750dw_j9v78b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_managed_p57750dw_j9v78b	-	No
Operating System	hp	pagewide_managed_p57750dw_j9v82d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_managed_p57750dw_j9v82d	-	No
Operating System	hp	pagewide_managed_p57750dw_j9v82a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_managed_p57750dw_j9v82a	-	No
Operating System	hp	pagewide_managed_p55250dw_j6u51b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_managed_p55250dw_j6u51b	-	No
Operating System	hp	pagewide_managed_p55250dw_j6u55d_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_managed_p55250dw_j6u55d	-	No
Operating System	hp	pagewide_managed_p55250dw_j6u55a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_managed_p55250dw_j6u55a	-	No
Operating System	hp	pagewide_377dw_j9v80b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_377dw_j9v80b	-	No
Operating System	hp	pagewide_377dw_j9v80a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_377dw_j9v80a	-	No
Operating System	hp	pagewide_352dw_j6u57b_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_352dw_j6u57b	-	No
Operating System	hp	pagewide_352dw_j6u57a_firmware	< 001.1937d	Yes
Hardware	hp	pagewide_352dw_j6u57a	-	No
Operating System	hp	officejet_pro_8210_d9l63a_firmware	< 001.1937c	Yes
Hardware	hp	officejet_pro_8210_d9l63a	-	No
Operating System	hp	officejet_pro_8210_d9l64a_firmware	< 001.1937c	Yes
Hardware	hp	officejet_pro_8210_d9l64a	-	No
Operating System	hp	officejet_pro_8210_j3p65a_firmware	< 001.1937c	Yes
Hardware	hp	officejet_pro_8210_j3p65a	-	No
Operating System	hp	officejet_pro_8210_j3p68a_firmware	< 001.1937c	Yes
Hardware	hp	officejet_pro_8210_j3p68a	-	No
Operating System	hp	officejet_pro_8210_t0g70a_firmware	< 001.1937c	Yes
Hardware	hp	officejet_pro_8210_t0g70a	-	No

References

https://support.hp.com/us-en/document/c06458150 Vendor Advisory ([email protected])
https://support.hp.com/us-en/document/c06458150 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For hp's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.