CVE-2026-1996

MEDIUM EPSS 17.9%

Published Feb 10, 20264mo ago · Modified Feb 24, 20264mo ago

6.9 CVSS 4.0

Medium

Published Feb 10, 2026 4mo ago

Last Modified Feb 24, 2026 4mo ago

Description

Certain HP OfficeJet Pro printers may be vulnerable to potential denial of service when the IPP requests are mishandled, failing to establish a TCP connection.

CVSS Details

Base Score

6.9

Exploitability

—

Impact

—

Vector string

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope X

Threat Intelligence

EPSS Exploit Probability

17.9% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-703

Affected Products 34

Vendor	Product	Version	Range
hp	d9l18a_firmware	*	<001.2602a
hp	d9l18a	*	any
hp	m9l66a_firmware	*	<001.2602a
hp	m9l66a	*	any
hp	m9l67a_firmware	*	<001.2602a
hp	m9l67a	*	any
hp	t0g46a_firmware	*	<001.2602a
hp	t0g46a	*	any
hp	j6x76a_firmware	*	<001.2602a
hp	j6x76a	*	any
hp	j6x78a_firmware	*	<001.2602a
hp	j6x78a	*	any
hp	j6x80a_firmware	*	<001.2602a
hp	j6x80a	*	any
hp	k7s37a_firmware	*	<001.2602a
hp	k7s37a	*	any
hp	m9l70a_firmware	*	<001.2602a
hp	m9l70a	*	any
hp	j6x77a_firmware	*	<001.2602a
hp	j6x77a	*	any
hp	j6x81a_firmware	*	<001.2602a
hp	j6x81a	*	any
hp	j6x79a_firmware	*	<001.2602a
hp	j6x79a	*	any
hp	k7s38a_firmware	*	<001.2602a
hp	k7s38a	*	any
hp	t0g47a_firmware	*	<001.2602a
hp	t0g47a	*	any
hp	t0g48a_firmware	*	<001.2602a
hp	t0g48a	*	any
hp	t0g49a_firmware	*	<001.2602a
hp	t0g49a	*	any
hp	m9l65a_firmware	*	<001.2602a
hp	m9l65a	*	any

References 1

support.hp.com https://support.hp.com/us-en/document/ish_14057472-14057502-16/hpsbpi04089

Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.