Description
Certain HP DeskJet All in One devices
may be vulnerable to remote code execution caused by a buffer overflow when
specially crafted Web Services for Devices (WSD) scan requests are improperly
validated and handled by the MFP.



WSD
Scan is a Microsoft Windows–based network scanning protocol that allows a PC to
discover scanners (and MFPs) on a network and send scan jobs to them without
requiring vendor specific drivers or utilities.
Published: 2026-04-15
Score: 8.7 High
EPSS: n/a
KEV: No
Impact: Remote Code Execution
Action: Immediate Patch
AI Analysis

Impact

This vulnerability is a buffer overflow that can lead to remote code execution. A specially crafted WSD scan request is not properly validated by the multi‑function printer firmware, allowing an attacker to inject malicious code and potentially compromise the device, leading to elevation of privileges, data exfiltration, or disruption of service. The weakness is classified as CWE‑121.

Affected Systems

The affected devices are HP DeskJet 2800e All‑in‑One, HP DeskJet 4200 All‑in‑One, HP DeskJet 4200e All‑in‑One, HP DeskJet Ink Advantage 2800 All‑in‑One, HP DeskJet Ink Advantage 4200 All‑in‑One, and HP DeskJet Ink Advantage Ultra 4900 All‑in‑One printers. Specific firmware versions are not detailed, so any deployed units of these models should be considered vulnerable until a patch is applied.

Risk and Exploitability

The CVSS score of 8.7 indicates a high severity vulnerability. EPSS is not available, and it is not listed in the CISA KEV catalog. The likely attack vector is remote over the network via the WSD protocol; an attacker can craft a scan request that exploits the overflow. Successful exploitation would grant remote code execution on the device, potentially compromising other network resources and exposing sensitive documents.

Generated by OpenCVE AI on April 15, 2026 at 19:25 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest HP firmware update that addresses the buffer overflow identified as CWE‑121.
  • If a patch is not yet available, disable the WSD functionality on the printers to eliminate the attack surface.
  • Configure network firewalls to block inbound WSD traffic from untrusted networks and restrict access to the printer's management interface to trusted hosts.

Generated by OpenCVE AI on April 15, 2026 at 19:25 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 15 Apr 2026 21:15:00 +0000

Type Values Removed Values Added
First Time appeared Hp
Hp deskjet 2800e All-in-one Printer Series
Hp deskjet 4200 All-in-one Printer Series
Hp deskjet 4200e All-in-one Printer Series
Hp deskjet Ink Advantage 2800 All-in-one Printer Series
Hp deskjet Ink Advantage 4200 All-in-one Printer Series
Hp deskjet Ink Advantage Ultra 4900 Series
Vendors & Products Hp
Hp deskjet 2800e All-in-one Printer Series
Hp deskjet 4200 All-in-one Printer Series
Hp deskjet 4200e All-in-one Printer Series
Hp deskjet Ink Advantage 2800 All-in-one Printer Series
Hp deskjet Ink Advantage 4200 All-in-one Printer Series
Hp deskjet Ink Advantage Ultra 4900 Series

Wed, 15 Apr 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 15 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices (WSD) scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allows a PC to discover scanners (and MFPs) on a network and send scan jobs to them without requiring vendor specific drivers or utilities.
Title Certain HP DeskJet All In One (AIO) Devices – Potential Remote Code Execution & Potential Buffer Overflow
Weaknesses CWE-121
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Hp Deskjet 2800e All-in-one Printer Series Deskjet 4200 All-in-one Printer Series Deskjet 4200e All-in-one Printer Series Deskjet Ink Advantage 2800 All-in-one Printer Series Deskjet Ink Advantage 4200 All-in-one Printer Series Deskjet Ink Advantage Ultra 4900 Series
cve-icon MITRE

Status: PUBLISHED

Assigner: hp

Published:

Updated: 2026-04-15T18:45:14.071Z

Reserved: 2026-03-23T22:00:03.720Z

Link: CVE-2026-4682

cve-icon Vulnrichment

Updated: 2026-04-15T18:45:08.468Z

cve-icon NVD

Status : Received

Published: 2026-04-15T15:16:42.800

Modified: 2026-04-15T15:16:42.800

Link: CVE-2026-4682

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-15T21:02:29Z

Weaknesses