Skip to main content

HP Linux Imaging and Printing CVE-2026-8631

| EUVDEUVD-2026-31193 CRITICAL
Heap-based Buffer Overflow (CWE-122)
2026-05-20 hp-security-alert@hp.com GHSA-hcc9-h975-pvc2
9.3
CVSS 4.0 · Vendor: hp
Share

Severity by source

Vendor (hp) PRIMARY
9.3 CRITICAL
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
SUSE
9.8 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Red Hat
9.8 HIGH
qualitative

Primary rating from Vendor (hp).

CVSS VectorVendor: hp

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

2
Patch available
May 20, 2026 - 22:02 EUVD
Analysis Generated
May 20, 2026 - 21:30 vuln.today

DescriptionCVE.org

A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. This potential vulnerability may allow escalation of privileges and/or arbitrary code execution via an integer overflow in the hpcups processing path when handling crafted print data.

AnalysisAI

Heap-based integer overflow in the hpcups component of HP Linux Imaging and Printing Software (HPLIP) allows attackers to achieve arbitrary code execution and/or privilege escalation by submitting crafted print data. The CVSS 4.0 base score of 9.3 reflects network-reachable exploitation against the printing subsystem with no authentication or user interaction required, though no public exploit identified at time of analysis and the issue has not been added to CISA KEV.

Technical ContextAI

HPLIP is HP's open-source driver and management stack for HP inkjet and laser printers on Linux, widely bundled into mainstream distributions (Ubuntu, Fedora, Debian, RHEL) and frequently installed with elevated privileges to interact with CUPS, USB, and SNMP. The vulnerable component, hpcups, is the CUPS filter that converts print job data into the device-specific raster format consumed by HP printers. CWE-122 (heap-based buffer overflow) here originates from an integer overflow during size or offset calculations on attacker-controlled print data; the truncated arithmetic produces an undersized heap allocation that is then overrun when the actual data is copied in, corrupting adjacent heap metadata or function pointers within the CUPS filter process.

RemediationAI

Patch available per vendor advisory - consult HP Security Bulletin HPSBPI04118 at https://support.hp.com/us-en/document/ish_14942099-14942126-16/hpsbpi04118 for the fixed HPLIP release and upgrade to that or later, then apply the corresponding distribution package update (apt/dnf/zypper) once your vendor rebuilds hplip. As compensating controls until patched, restrict CUPS to localhost by ensuring /etc/cups/cupsd.conf binds only to 127.0.0.1 and removes 'Listen *:631' (side effect: breaks remote print submission and IPP browsing), block inbound TCP/UDP 631 at the host or perimeter firewall for untrusted networks, disable CUPS print sharing (cupsctl --no-share-printers) on systems that do not need it, and on systems that do not use HP devices remove the hplip package entirely to eliminate the hpcups filter. Avoid accepting print jobs from untrusted sources and consider running CUPS under AppArmor/SELinux confinement where available to limit post-exploitation movement.

Vendor StatusVendor

SUSE

Severity: Critical
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise Module for Basesystem 15 SP7 Fixed
SUSE Linux Enterprise Module for Desktop Applications 15 SP7 Fixed
SUSE Linux Enterprise Server 15 SP7 Fixed

Share

CVE-2026-8631 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy