Description
Samsung Print Service Plugin for Android is potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities.
Published: 2026-05-06
Score: 6.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Samsung Print Service Plugin for Android contains a flaw that can let an attacker read sensitive data when the plugin is outdated. The weakness is CWE-926, an information exposure through displayed data vulnerability that can expose confidential information stored or transmitted by the app.

Affected Systems

The issue affects older installations of the Samsung Print Service Plugin distributed by HP, Inc. for Android devices. No specific version numbers are given, but any plugin version published before the latest HP update is susceptible.

Risk and Exploitability

The CVSS score of 6.9 indicates a moderate risk. EPSS is not available, so the probability of exploitation is uncertain, and the vulnerability is not listed in CISA KEV. The likely attack vector appears to be local to a user’s device, requiring the outdated plugin to be installed. An attacker could leverage the plugin’s exposed data paths to extract information from the device.

Generated by OpenCVE AI on May 7, 2026 at 00:06 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install the latest Samsung Print Service Plugin update provided by HP (see HP support advisory).
  • If the plugin is not required for your printing tasks, uninstall it from the device to remove the risk surface.
  • Restrict the plugin’s permissions so it cannot access sensitive data or network resources.
  • If you must continue using the plugin and no update is available, contact HP support for advice on limiting potential disclosures.

Generated by OpenCVE AI on May 7, 2026 at 00:06 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 07 May 2026 21:45:00 +0000

Type Values Removed Values Added
First Time appeared Hp
Hp samsung Print Service Plugin
Vendors & Products Hp
Hp samsung Print Service Plugin

Thu, 07 May 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 06 May 2026 22:15:00 +0000

Type Values Removed Values Added
Description Samsung Print Service Plugin for Android is potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities.
Title Samsung Print Service Plugin – Potential Information Disclosure
Weaknesses CWE-926
References
Metrics cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Hp Samsung Print Service Plugin
cve-icon MITRE

Status: PUBLISHED

Assigner: hp

Published:

Updated: 2026-05-07T13:17:16.484Z

Reserved: 2026-02-26T17:39:25.534Z

Link: CVE-2026-3291

cve-icon Vulnrichment

Updated: 2026-05-07T13:17:09.283Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-06T22:16:25.367

Modified: 2026-05-07T15:15:06.770

Link: CVE-2026-3291

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T21:25:24Z

Weaknesses