CVE-2019-10627

Q: What is the severity of CVE-2019-10627?

CVE-2019-10627 has a CVSS score of 9.8 (CRITICAL). This CVE describes an integer overflow vulnerability in PostScript/PDF image handling code that leads to buffer overflow. It affects PostScript and PDF printers using IPS versions before 2019.2. Attackers could exploit this to execute arbitrary code or cause denial of service.

9.8 CRITICAL

📋 TL;DR

This CVE describes an integer overflow vulnerability in PostScript/PDF image handling code that leads to buffer overflow. It affects PostScript and PDF printers using IPS versions before 2019.2. Attackers could exploit this to execute arbitrary code or cause denial of service.

💻 Affected Systems

Products:

HP printers with PostScript/PDF support
Qualcomm-based printers
Other printers using IPS interpreter

Versions: IPS versions prior to 2019.2

Operating Systems: Embedded printer OS, Windows print servers, Linux print servers

Default Config Vulnerable: ⚠️ Yes

Notes: Affects printers with PostScript or PDF printing enabled. Print servers processing PostScript/PDF files may also be vulnerable.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with SYSTEM/root privileges leading to complete system compromise, lateral movement, and persistent access.

🟠

Likely Case

Denial of service (printer/service crash) or limited code execution in printer context.

🟢

If Mitigated

Denial of service only if memory protections (ASLR/DEP) partially mitigate.

🌐 Internet-Facing: HIGH - Printers exposed to internet could be directly attacked via print jobs.

🏢 Internal Only: MEDIUM - Requires internal network access but print services are commonly accessible.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires sending malicious PostScript/PDF files to vulnerable printers. No public exploit code known.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: IPS 2019.2 or later

Vendor Advisory: https://support.hp.com/us-en/document/c06458150

Restart Required: Yes

Instructions:

1. Check printer firmware version. 2. Download IPS 2019.2+ firmware from HP/Qualcomm. 3. Apply firmware update via printer web interface or management tool. 4. Restart printer to complete installation.

🔧 Temporary Workarounds

Disable PostScript/PDF printing

all

Disable vulnerable PostScript and PDF interpreters if not required.

Printer-specific: Disable PostScript/PDF via web interface or print server settings

Network segmentation

all

Isolate printers to separate VLAN with restricted access.

Network switch: Configure VLANs and ACLs to restrict printer access

🧯 If You Can't Patch

Implement strict network access controls to limit printer access to trusted hosts only.
Monitor print queues for suspicious PostScript/PDF files and implement file type filtering.

🔍 How to Verify

Check if Vulnerable:

Check printer firmware version via web interface (typically http://printer-ip) or management console. Look for IPS version.

Check Version:

Printer-specific: Use SNMP (snmpget -v2c -c public printer-ip 1.3.6.1.2.1.25.6.3.1.2) or check web interface

Verify Fix Applied:

Confirm firmware version shows IPS 2019.2 or later after update.

📡 Detection & Monitoring

Log Indicators:

Printer crash logs
Failed print jobs with PostScript/PDF errors
Memory allocation failures in printer logs

Network Indicators:

Unusual print job traffic to printers
Large PostScript/PDF files sent to printers

SIEM Query:

source="printer_logs" AND ("crash" OR "memory" OR "PostScript error")

📊 Metadata

CVE ID: CVE-2019-10627

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-119

Published: November 21, 2019

Last Updated: November 21, 2024

🔗 References

https://support.hp.com/us-en/document/c06458150 Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin Third Party Advisory
https://support.hp.com/us-en/document/c06458150 Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin Third Party Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

2dr21d Firmware by Hp

D3q15a Firmware by Hp

D3q15b Firmware by Hp

D3q15d Firmware by Hp

D3q16a Firmware by Hp

D3q16d Firmware by Hp

D3q17a Firmware by Hp

D3q17d Firmware by Hp

D3q19a Firmware by Hp

D3q19b Firmware by Hp

D3q19d Firmware by Hp

D3q20a Firmware by Hp

D3q20b Firmware by Hp

D3q20c Firmware by Hp

D3q20d Firmware by Hp

D3q21a Firmware by Hp

D3q21b Firmware by Hp

D3q21c Firmware by Hp

D3q21d Firmware by Hp

D9l63a Firmware by Hp

D9l64a Firmware by Hp

Ips by Qualcomm

J3p65a Firmware by Hp

J3p68a Firmware by Hp

J6u51b Firmware by Hp

J6u55a Firmware by Hp

J6u55d Firmware by Hp

J6u57a Firmware by Hp

J6u57b Firmware by Hp

J9v78b Firmware by Hp

J9v80a Firmware by Hp

J9v80b Firmware by Hp

J9v82a Firmware by Hp

J9v82d Firmware by Hp

K9z74a Firmware by Hp

K9z74d Firmware by Hp

K9z76a Firmware by Hp

K9z76b Firmware by Hp

K9z76d Firmware by Hp

T0g70a Firmware by Hp

W2z52b Firmware by Hp

W2z53b Firmware by Hp