CVE-2022-4894

high-risk
Published 2023-08-16

Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element.

Do I need to act?

-
0.12% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.3/10 High
LOCAL / LOW complexity

Affected Products (20)

2Zn49A Firmware
2Zn50A Firmware
2Ky38A Firmware
W7U01A Firmware
W7U02A Firmware
1Vr14A Firmware
7Uq76A Firmware
7Ab26A Firmware
7Zb25A Firmware
7Zb72A Firmware
8Af49A Firmware
8Af50A Firmware
8Af51A Firmware
8Af52A Firmware
7Zb20A Firmware
7Zb19A Firmware
7Zb21A Firmware
4Zb81A Firmware
5Ue14A Firmware
209U7A Firmware

Affected Vendors

Hp Samsung

References (2)

Vendor Advisory https://support.hp.com/us-en/document/ish_8947379-8947403-16/hpsbpi03857
Vendor Advisory https://support.hp.com/us-en/document/ish_8947379-8947403-16/hpsbpi03857
57
/ 100
high-risk
Severity 23/34 · High
Exploitability 1/34 · Minimal
Exposure 33/34 · Critical