Skip to main content

9Yf88A Firmware CVE-2024-9423

MEDIUM
Improper Handling of Unexpected Data Type (CWE-241)
2024-10-02 hp-security-alert@hp.com
HP Denial Of Service 9Yf88A Firmware 9Yf89A Firmware 9Yf90A Firmware 9Yf91A Firmware 9Yf91E Firmware 9Yf92A Firmware 9Yf94A Firmware 9Yf95A Firmware 9Yf96A Firmware 9Yf97A Firmware 9Yf98A Firmware 9Yg02A Firmware 9Yg02E Firmware 9Yg05A Firmware 9Yg05E Firmware 9Yg08A Firmware 9Yg09A Firmware 9Yg10A Firmware 9Yg11A Firmware 2U582A Firmware 2U584A Firmware 7Md66A Firmware 7Md68A Firmware 2U587A Firmware 2U581A Firmware 7Md65A Firmware 7Md67A Firmware 2U586A Firmware 2U582E Firmware 2U584E Firmware 7Md66E Firmware 7Md68E Firmware 2U587E Firmware 381U3A Firmware 381U4A Firmware 2R3E7A Firmware 2R3E8A Firmware 381L0A Firmware 2R3F0A Firmware 2R7F5A Firmware 381V4A Firmware 1Y7D4A Firmware 2A129A Firmware 2A130A Firmware 2A130E Firmware 2U589A Firmware 2U589E Firmware 2U589F Firmware 6Gw61A Firmware 6Gw62A Firmware 6Gw62E Firmware 6Gw62Er Firmware 6Gw63A Firmware 6Gw71A Firmware 6Gw99A Firmware 6Gw99E Firmware 6Gx00A Firmware 6Gx00E Firmware 6Gx01A Firmware 6Gx02E Firmware 6Gx03A Firmware 6Gx04A Firmware 6Gx05A Firmware 6Gx05E Firmware 6Gx06A Firmware 6Gx09A Firmware 6Gx09E Firmware 7Md69A Firmware 7Md70A Firmware 7Md70E Firmware 7Md70F Firmware 7Md71A Firmware 7Md72A Firmware 7Md72E Firmware 7Md73A Firmware 7Md74A Firmware 7Md74E Firmware 7Md75A Firmware 7Md76A Firmware 7Md76E Firmware 9Yf80A Firmware 9Yf82A Firmware 9Yf83A Firmware 9Yf84A Firmware 9Yf85A Firmware 381U7A Firmware 381U8A Firmware 381V0A Firmware 381V1A Firmware 381U9A Firmware 381U6A Firmware 381U0A Firmware 381U5A Firmware 381U1A Firmware 381U2A Firmware 381V5A Firmware 381V6A Firmware 2R3E1A Firmware 2R3E2A Firmware 2R7F3A Firmware 2R3E3A Firmware 2R7F4A Firmware
5.3
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.3 MEDIUM
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
Low

Lifecycle Timeline

1
CVE Published
Oct 02, 2024 - 16:15 nvd
MEDIUM 5.3

DescriptionNVD

Certain HP LaserJet printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer. The printer displays a “JPEG Unsupported” message which may not clear, potentially blocking queued print jobs.

AnalysisAI

Certain HP LaserJet printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-241. Certain HP LaserJet printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer. The printer displays a “JPEG Unsupported” message which may not clear, potentially blocking queued print jobs. Affected products include: Hp 9Yf88A Firmware, Hp 9Yf89A Firmware, Hp 9Yf90A Firmware, Hp 9Yf91A Firmware, Hp 9Yf91E Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Share

CVE-2024-9423 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy