{"dataType": "CVE_RECORD", "containers": {"adp": [{"metrics": [{"other": {"type": "Unknown", "content": {"data": "{\"description\":\"not yet assigned\"}"}}}], "affected": [{"vendor": "debian", "product": "hpijs-ppds", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "hplip", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "hplip-data", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "hplip-dbgsym", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "hplip-doc", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "hplip-gui", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "libhpmud-dev", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "libhpmud0", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "libhpmud0-dbgsym", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "libsane-hpaio", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "libsane-hpaio-dbgsym", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "printer-driver-hpcups", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "printer-driver-hpcups-dbgsym", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "printer-driver-hpijs", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "printer-driver-hpijs-dbgsym", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "printer-driver-postscript-hp", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "printer-driver-postscript-hp-dbgsym", "platforms": ["bookworm", "bullseye", "trixie"], "defaultStatus": "affected"}, {"vendor": "debian", "product": "hpijs-ppds", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "hplip", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "hplip-data", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "hplip-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "hplip-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "hplip-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libhpmud-dev", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libhpmud0", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libhpmud0-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsane-hpaio", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "libsane-hpaio-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "printer-driver-hpcups", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "printer-driver-hpcups-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "printer-driver-hpijs", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "printer-driver-hpijs-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "printer-driver-postscript-hp", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "printer-driver-postscript-hp-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4+dfsg0-1", "versionType": "deb"}], "platforms": ["sid"], "defaultStatus": "unaffected"}], "references": [{"url": "https://security-tracker.debian.org/tracker/CVE-2026-8631"}], "descriptions": [{"lang": "en", "value": "A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. This potential vulnerability may allow escalation of privileges and/or arbitrary code execution via an integer overflow in the hpcups processing path when handling crafted print data."}], "providerMetadata": {"orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5", "shortName": "debian", "dateUpdated": "2026-05-20T20:11:14.070Z", "x_subShortName": "debian"}}, {"metrics": [{"other": {"type": "Unknown", "content": {"data": "{\"description\":\"high\"}"}}}], "affected": [{"vendor": "fedora", "product": "hplip", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.4-2.fc43", "versionType": "rpm"}], "platforms": ["cpe:/o:fedoraproject:fedora:43"], "defaultStatus": "unaffected"}, {"vendor": "fedora", "product": "hplip", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.26.4-2.fc44", "versionType": "rpm"}], "platforms": ["cpe:/o:fedoraproject:fedora:44"], "defaultStatus": "unaffected"}], "references": [{"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-28afc9a105"}, {"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-df2e96fe77"}], "descriptions": [{"lang": "en", "value": "HPLIP: HPLIP: Arbitrary code execution and privilege escalation via integer overflow in hpcups"}, {"lang": "en", "value": "hplip: HPLIP: Arbitrary code execution and privilege escalation via integer overflow in hpcups"}], "providerMetadata": {"orgId": "92fb86c3-55a5-4fb5-9c3f-4757b9e96dc5", "shortName": "fedora", "dateUpdated": "2026-06-02T00:53:32Z", "x_subShortName": "fedora"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "hplip", "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unknown"}, {"vendor": "redhat", "product": "hplip-common", "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unknown"}, {"vendor": "redhat", "product": "hplip-libs", "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unknown"}, {"vendor": "redhat", "product": "libsane-hpaio", "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unknown"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2026-8631"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480300"}, {"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-8631"}, {"url": "https://support.hp.com/us-en/document/ish_14942099-14942126-16/hpsbpi04118"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2026-8631"}], "descriptions": [{"lang": "en", "value": "A flaw was found in HP Linux Imaging and Printing Software (HPLIP). This vulnerability, caused by an integer overflow in the hpcups processing path, occurs when the software handles specially crafted print data. A successful exploit could lead to arbitrary code execution or escalation of privileges on the affected system."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2026-05-20T20:11:14Z", "x_subShortName": "redhat_10"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "unknown", "product": "unknown", "defaultStatus": "unknown"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2026-8631"}], "descriptions": [{"lang": "en", "value": "A flaw was found in HP Linux Imaging and Printing Software (HPLIP). This vulnerability, caused by an integer overflow in the hpcups processing path, occurs when the software handles specially crafted print data. A successful exploit could lead to arbitrary code execution or escalation of privileges on the affected system. \n            This Important flaw in HPLIP's hpcups component allows for arbitrary code execution and privilege escalation. The vulnerability can be triggered remotely without user interaction by processing specially crafted print data, posing a significant risk to systems with HPLIP installed."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2026-05-20T20:11:00Z", "x_subShortName": "redhat_6"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "unknown", "product": "unknown", "defaultStatus": "unknown"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2026-8631"}], "descriptions": [{"lang": "en", "value": "A flaw was found in HP Linux Imaging and Printing Software (HPLIP). This vulnerability, caused by an integer overflow in the hpcups processing path, occurs when the software handles specially crafted print data. A successful exploit could lead to arbitrary code execution or escalation of privileges on the affected system. \n            This Important flaw in HPLIP's hpcups component allows for arbitrary code execution and privilege escalation. The vulnerability can be triggered remotely without user interaction by processing specially crafted print data, posing a significant risk to systems with HPLIP installed."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2026-05-20T20:11:00Z", "x_subShortName": "redhat_7"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "unknown", "product": "unknown", "defaultStatus": "unknown"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2026-8631"}], "descriptions": [{"lang": "en", "value": "A flaw was found in HP Linux Imaging and Printing Software (HPLIP). This vulnerability, caused by an integer overflow in the hpcups processing path, occurs when the software handles specially crafted print data. A successful exploit could lead to arbitrary code execution or escalation of privileges on the affected system. \n            This Important flaw in HPLIP's hpcups component allows for arbitrary code execution and privilege escalation. The vulnerability can be triggered remotely without user interaction by processing specially crafted print data, posing a significant risk to systems with HPLIP installed."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2026-05-20T20:11:00Z", "x_subShortName": "redhat_8"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "unknown", "product": "unknown", "defaultStatus": "unknown"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2026-8631"}], "descriptions": [{"lang": "en", "value": "A flaw was found in HP Linux Imaging and Printing Software (HPLIP). This vulnerability, caused by an integer overflow in the hpcups processing path, occurs when the software handles specially crafted print data. A successful exploit could lead to arbitrary code execution or escalation of privileges on the affected system. \n            This Important flaw in HPLIP's hpcups component allows for arbitrary code execution and privilege escalation. The vulnerability can be triggered remotely without user interaction by processing specially crafted print data, posing a significant risk to systems with HPLIP installed."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2026-05-20T20:11:00Z", "x_subShortName": "redhat_9"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"cpes": ["cpe:2.3:a:hp:linux_imaging_and_printing:*:*:*:*:*:*:*:*"], "vendor": "hp", "product": "linux_imaging_and_printing", "versions": [{"status": "affected", "version": "0", "lessThan": "3.26.4", "versionType": "custom"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://support.hp.com/us-en/document/ish_14942099-14942126-16/hpsbpi04118", "tags": ["vendor-advisory"]}], "descriptions": [{"lang": "en", "value": "A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. This potential vulnerability may allow escalation of privileges and/or arbitrary code execution via an integer overflow in the hpcups processing path when handling crafted print data."}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-122", "description": "CWE-122"}, {"lang": "en", "cweId": "CWE-190", "description": "CWE-190"}]}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000003", "shortName": "nvd", "dateUpdated": "2026-05-20T21:16:18Z", "x_subShortName": "nvd"}}}, "cveMetadata": {"cveId": "CVE-2026-8631", "state": "PUBLISHED", "dateUpdated": "2026-05-21T18:58:41Z", "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "datePublished": "2026-05-20T21:16:18Z", "assignerShortName": "hp"}, "dataVersion": "5.0"}