Skip to main content

Linux Imaging And Printing

3 CVEs product

Monthly

CVE-2026-8632 HIGH PATCH This Week

Local privilege escalation in HP Linux Imaging and Printing Software (HPLIP) allows authenticated low-privileged users to execute arbitrary OS commands via command injection, potentially gaining elevated privileges on affected Linux hosts. The CVSS 4.0 score of 8.5 reflects high impact to confidentiality, integrity, and availability with low attack complexity, and no public exploit identified at time of analysis. The vulnerability is reported directly by HP PSIRT under advisory hpsbpi04118.

HP RCE Command Injection Linux Imaging And Printing
NVD VulDB
CVSS 4.0
8.5
EPSS
0.1%
CVE-2026-8631 CRITICAL PATCH Act Now

Heap-based integer overflow in the hpcups component of HP Linux Imaging and Printing Software (HPLIP) allows attackers to achieve arbitrary code execution and/or privilege escalation by submitting crafted print data. The CVSS 4.0 base score of 9.3 reflects network-reachable exploitation against the printing subsystem with no authentication or user interaction required, though no public exploit identified at time of analysis and the issue has not been added to CISA KEV.

HP Buffer Overflow RCE Heap Overflow Linux Imaging And Printing
NVD VulDB
CVSS 4.0
9.3
EPSS
0.0%
CVE-2015-0839 HIGH This Week

The hp-plugin utility in HP Linux Imaging and Printing (HPLIP) makes it easier for man-in-the-middle attackers to execute arbitrary code by leveraging use of a short GPG key id from a keyserver to. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE HP Linux Imaging And Printing
NVD
CVSS 3.0
8.1
EPSS
0.3%
EPSS 0% CVSS 8.5
HIGH PATCH This Week

Local privilege escalation in HP Linux Imaging and Printing Software (HPLIP) allows authenticated low-privileged users to execute arbitrary OS commands via command injection, potentially gaining elevated privileges on affected Linux hosts. The CVSS 4.0 score of 8.5 reflects high impact to confidentiality, integrity, and availability with low attack complexity, and no public exploit identified at time of analysis. The vulnerability is reported directly by HP PSIRT under advisory hpsbpi04118.

HP RCE Command Injection +1
NVD VulDB
EPSS 0% CVSS 9.3
CRITICAL PATCH Act Now

Heap-based integer overflow in the hpcups component of HP Linux Imaging and Printing Software (HPLIP) allows attackers to achieve arbitrary code execution and/or privilege escalation by submitting crafted print data. The CVSS 4.0 base score of 9.3 reflects network-reachable exploitation against the printing subsystem with no authentication or user interaction required, though no public exploit identified at time of analysis and the issue has not been added to CISA KEV.

HP Buffer Overflow RCE +2
NVD VulDB
EPSS 0% CVSS 8.1
HIGH This Week

The hp-plugin utility in HP Linux Imaging and Printing (HPLIP) makes it easier for man-in-the-middle attackers to execute arbitrary code by leveraging use of a short GPG key id from a keyserver to. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE HP Linux Imaging And Printing
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy