CVE-2026-4682
Certain HP DeskJet All In One (AIO) Devices – Potential Remote Code Execution & Potential Buffer Overflow
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices (WSD) scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allows a PC to discover scanners (and MFPs) on a network and send scan jobs to them without requiring vendor specific drivers or utilities.
| CWE | CWE-121 |
| Vendor | hp inc |
| Product | hp deskjet 2800e all-in-one printer series |
| Published | Apr 15, 2026 |
| Last Updated | Apr 15, 2026 |
Stay Ahead of the Next One
Get instant alerts for hp inc hp deskjet 2800e all-in-one printer series
Be the first to know when new unknown vulnerabilities affecting hp inc hp deskjet 2800e all-in-one printer series are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
HP Inc / HP DeskJet 2800e All-in-One Printer series
0 < <2612A
HP Inc / HP DeskJet 4200 All-in-One Printer series
0 < <2612A
HP Inc / HP DeskJet Ink Advantage 4200 All-in-One Printer series
0 < <2612A
HP Inc / HP DeskJet 4200e All-in-One Printer series
0 < <2612A
HP Inc / HP DeskJet Ink Advantage Ultra 4900 series
0 < <2612A
HP Inc / HP DeskJet Ink Advantage 2800 All-in-One Printer series
0 < <2612A