Vulnerability Details CVE-2019-6324
HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. 20190419), HP LaserJet Pro MFP M28-M31 Printer series (before v. 20190426) may have an embedded web server potentially vulnerable to stored XSS in wireless configuration page
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.8%
CVSS Severity
CVSS v3 Score 4.8
CVSS v2 Score 3.5
References
Products affected by CVE-2019-6324
-
cpe:2.3:h:hp:t6b80a:-
-
cpe:2.3:h:hp:t6b81a:-
-
cpe:2.3:h:hp:t6b82a:-
-
cpe:2.3:h:hp:t6b83a:-
-
cpe:2.3:h:hp:w2g54a:-
-
cpe:2.3:h:hp:w2g55a:-
-
cpe:2.3:h:hp:y5s50a:-
-
cpe:2.3:h:hp:y5s53a:-
-
cpe:2.3:h:hp:y5s54a:-
-
cpe:2.3:h:hp:y5s55a:-
-
cpe:2.3:o:hp:t6b80a_firmware:*
-
cpe:2.3:o:hp:t6b81a_firmware:*
-
cpe:2.3:o:hp:t6b82a_firmware:*
-
cpe:2.3:o:hp:t6b83a_firmware:*
-
cpe:2.3:o:hp:w2g54a_firmware:*
-
cpe:2.3:o:hp:w2g55a_firmware:*
-
cpe:2.3:o:hp:y5s50a_firmware:*
-
cpe:2.3:o:hp:y5s53a_firmware:*
-
cpe:2.3:o:hp:y5s54a_firmware:*
-
cpe:2.3:o:hp:y5s55a_firmware:*