cbcvebase.
CVE-2019-10627
published 2019-11-21

CVE-2019-10627: Integer overflow to buffer overflow vulnerability in PostScript image handling code used by the PostScript- and PDF-compatible interpreters due to incorrect…

PriorityP346critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.39%
68.9th percentile
Integer overflow to buffer overflow vulnerability in PostScript image handling code used by the PostScript- and PDF-compatible interpreters due to incorrect buffer size calculation. in PostScript and PDF printers that use IPS versions prior to 2019.2 in PostScript and PDF printers that use IPS versions prior to 2019.2

Affected

43 ranges· showing 25
VendorProductVersion rangeFixed in
hp2dr21d_firmware< 001.1937d001.1937d
hpd3q15a_firmware< 001.1937d001.1937d
hpd3q15b_firmware< 001.1937d001.1937d
hpd3q15d_firmware< 001.1937d001.1937d
hpd3q16a_firmware< 001.1937d001.1937d
hpd3q16d_firmware< 001.1937d001.1937d
hpd3q17a_firmware< 001.1937d001.1937d
hpd3q17d_firmware< 001.1937d001.1937d
hpd3q19a_firmware< 001.1937d001.1937d
hpd3q19b_firmware< 001.1937d001.1937d
hpd3q19d_firmware< 001.1937d001.1937d
hpd3q20a_firmware< 001.1937d001.1937d
hpd3q20b_firmware< 001.1937d001.1937d
hpd3q20c_firmware< 001.1937d001.1937d
hpd3q20d_firmware< 001.1937d001.1937d
hpd3q21a_firmware< 001.1937d001.1937d
hpd3q21b_firmware< 001.1937d001.1937d
hpd3q21c_firmware< 001.1937d001.1937d
hpd3q21d_firmware< 001.1937d001.1937d
hpd9l63a_firmware< 001.1937c001.1937c
hpd9l64a_firmware< 001.1937c001.1937c
hpj3p65a_firmware< 001.1937c001.1937c
hpj3p68a_firmware< 001.1937c001.1937c
hpj6u51b_firmware< 001.1937d001.1937d
hpj6u55a_firmware< 001.1937d001.1937d

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.