cbcvebase.
CVE-2019-18914
published 2021-11-09

CVE-2019-18914: A potential security vulnerability has been identified for certain HP printers and MFPs that would allow redirection page Cross-Site Scripting in a client’s…

PriorityP423medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
0.65%
46.4th percentile
A potential security vulnerability has been identified for certain HP printers and MFPs that would allow redirection page Cross-Site Scripting in a client’s browser by clicking on a third-party malicious link.

Affected

67 ranges· showing 25
VendorProductVersion rangeFixed in
hpfuturesmart_3< 2309025_5820812309025_582081
hpfuturesmart_3< 2309025_5820982309025_582098
hpfuturesmart_3< 2309025_5820892309025_582089
hpfuturesmart_3< 2309025_5820962309025_582096
hpfuturesmart_3< 2309025_5821022309025_582102
hpfuturesmart_3< 2309025_5820992309025_582099
hpfuturesmart_3< 2309025_5820932309025_582093
hpfuturesmart_3< 2309025_5821012309025_582101
hpfuturesmart_3< 2309025_5820842309025_582084
hpfuturesmart_3< 2309025_5821082309025_582108
hpfuturesmart_3< 2309025_5821062309025_582106
hpfuturesmart_3< 2309025_5820972309025_582097
hpfuturesmart_3< 2309025_5821132309025_582113
hpfuturesmart_3< 2309025_5821052309025_582105
hpfuturesmart_3< 2309025_5821042309025_582104
hpfuturesmart_3< 2309025_5820822309025_582082
hpfuturesmart_3< 2309025_5821122309025_582112
hpfuturesmart_3< 2309025_5820882309025_582088
hpfuturesmart_3< 2309025_5820912309025_582091
hpfuturesmart_3< 2309025_5820852309025_582085
hpfuturesmart_3< 2309025_5821102309025_582110
hpfuturesmart_3< 2309025_5820862309025_582086
hpfuturesmart_3< 2309025_5821032309025_582103
hpfuturesmart_3< 2309025_5820832309025_582083
hpfuturesmart_3< 2309025_5821142309025_582114

CVSS provenance

nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.