Vulnerability Details : CVE-2018-5923
In HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed, and HP OfficeJet Enterprise Printers, solution application signature checking may allow potential execution of arbitrary code.
Products affected by CVE-2018-5923
- cpe:2.3:o:hp:color_laserjet_cm4540_mfp_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_cp5525_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_flow_mfp_m681f_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m552_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m553_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m651_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m651_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m652n_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m653dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m750_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_mfp_m577_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_mfp_m577_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_mfp_m681dh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_mfp_m682dh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_m680_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_m680_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_e55040dw_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_e65050dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_e65060dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e57540c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e67550f_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e67560z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e77822_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e77825_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e77830z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e87640_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e87650_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e87640z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e67550dh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e67560dh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e77822_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e77825_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e77830dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e87640_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e87650_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e87660dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e87640dn_firmware:*:*:*:*:*:*:*:*
- HP » Digital Sender Flow 8500 Fn2 Document Capture Workstation FirmwareVersions before (<) 2406048_029623cpe:2.3:o:hp:digital_sender_flow_8500_fn2_document_capture_workstation_firmware:*:*:*:*:*:*:*:*When used together with: HP » Digital Sender Flow 8500 Fn2 Document Capture Workstation » Version: N/A
- HP » Digital Sender Flow 8500 Fn2 Document Capture Workstation FirmwareVersions before (<) 2308937_578483cpe:2.3:o:hp:digital_sender_flow_8500_fn2_document_capture_workstation_firmware:*:*:*:*:*:*:*:*When used together with: HP » Digital Sender Flow 8500 Fn2 Document Capture Workstation » Version: N/A
- cpe:2.3:o:hp:laserjet_enterprise_500_color_mfp_m575dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_500_color_mfp_m575dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_500_mfp_m525f_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_500_mfp_m525f_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_600_m601_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_600_m602_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_600_m603xh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_700_m712xh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_800_color_m855_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_800_color_m855_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_800_color_mfp_m880_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_800_color_mfp_m880_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_color_500_m551_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_color_flow_mfp_m575c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_color_flow_mfp_m575c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_flow_m830z_mfp_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_flow_m830z_mfp_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_flow_mfp_m525c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_flow_mfp_m525c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_flow_mfp_m630z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_flow_mfp_m630z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_flow_mfp_m631h_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_flow_mfp_m632z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_flow_mfp_m633z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m4555_mfp_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m506_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m604_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m605_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m606_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m607n_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m608n_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m608dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m608dh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m608x_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m609dh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m609dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m609x_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m806_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m806_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m527_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m527_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m630_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m630_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m631dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m631z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m632fht_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m632h_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m633fh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m725_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_mfp_m725_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_e50045dw_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_e60055dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_e60065dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_e60065x_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_e60075dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_e60075x_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e52545c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e62555dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e62565h_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e62565z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e62575z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e72525_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e72530_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e72535z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e82540_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e82550_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_flow_mfp_e82560z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_mfp_e52545dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_mfp_e62555dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_mfp_e62565hs_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_mfp_e72525_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_mfp_e72530_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_mfp_e72535dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_mfp_e82540_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_mfp_e82550_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_managed_mfp_e82560dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:officejet_enterprise_color_flow_mfp_x585_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:officejet_enterprise_color_flow_mfp_x585_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:officejet_enterprise_color_mfp_x585_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:officejet_enterprise_color_mfp_x585_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:officejet_enterprise_color_x555dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:officejet_enterprise_color_x555dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:officejet_enterprise_color_x555xh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:officejet_enterprise_color_x555xh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_765dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_mfp_586dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_mfp_586dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_mfp_586f_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_mfp_586f_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_mpf_780f_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_mpf_780dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_mpf_785f_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_mpf_785zs_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_x556dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_x556dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_x556xh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_x556xh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_e55650dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_e55650dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_e75160dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_flow_mfp_586z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_enterprise_color_flow_mfp_586z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_flow_mfp_e58650z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_flow_mfp_e58650z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_flow_mfp_e77650z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_flow_mfp_e77650zs_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_flow_mfp_e77660dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_flow_mfp_e77660z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_flow_mfp_e77660zs_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_flow_mfp_e77660zts_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_mfp_e58650dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_mfp_e58650dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_mfp_e77650dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pagewide_managed_color_mfp_e77650dns_firmware:*:*:*:*:*:*:*:*
- HP » Scanjet Enterprise 8500 Document Capture Workstation FirmwareVersions before (<) 2308974_579756cpe:2.3:o:hp:scanjet_enterprise_8500_document_capture_workstation_firmware:*:*:*:*:*:*:*:*
- HP » Scanjet Enterprise Flow N9120 Document Flatbed Scanner FirmwareVersions before (<) 2406048_029625cpe:2.3:o:hp:scanjet_enterprise_flow_n9120_document_flatbed_scanner_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_flow_mfp_m681z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_flow_mfp_m682z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m652dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m653dh_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_m653x_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_enterprise_mfp_m681f_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_e65060x_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_flow_mfp_e87660z_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:color_laserjet_managed_mfp_e57540dn_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_700_color_mfp_m775_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:hp:laserjet_enterprise_m607dn_firmware:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-5923
0.33%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 67 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-5923
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST | |
9.8
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2018-5923
-
The product does not verify, or incorrectly verifies, the cryptographic signature for data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-5923
-
https://support.hp.com/us-en/document/c06169434
HPSBPI03596 rev. 2 - HP LaserJet Enterprise, HP PageWide Enterprise, HP LaserJet Managed, and HP OfficeJet Enterprise Printers, Execution of Arbitrary Code | HP® Customer SupportVendor Advisory
Jump to