CVE-2020-28419

Q: What is the severity of CVE-2020-28419?

CVE-2020-28419 has a CVSS score of 8.8 (HIGH). This vulnerability allows arbitrary code execution during installation of certain HP driver software or application packages. Attackers could exploit this to run malicious code with elevated privileges. Affected users are those installing vulnerable HP software packages.

8.8 HIGH

Remote Code Execution

📋 TL;DR

This vulnerability allows arbitrary code execution during installation of certain HP driver software or application packages. Attackers could exploit this to run malicious code with elevated privileges. Affected users are those installing vulnerable HP software packages.

💻 Affected Systems

Products:

HP driver software and application packages

Versions: Specific versions not detailed in reference, but pre-patch versions of affected HP software

Operating Systems: Windows

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability triggers during installation process of affected HP software packages.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with administrative privileges, allowing attackers to install persistent malware, steal sensitive data, or pivot to other systems.

🟠

Likely Case

Local privilege escalation leading to unauthorized software installation, system configuration changes, or credential theft.

🟢

If Mitigated

Limited impact with proper installation controls and user awareness, potentially resulting in failed exploitation attempts.

🌐 Internet-Facing: LOW - Exploitation requires local access or user interaction during software installation.

🏢 Internal Only: MEDIUM - Risk exists during software deployment or updates within the organization.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires user interaction during software installation and knowledge of vulnerable installation processes.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Updated versions referenced in HP advisory

Vendor Advisory: https://support.hp.com/us-en/document/c07058567

Restart Required: Yes

Instructions:

1. Visit HP support advisory. 2. Identify affected software. 3. Download and install updated versions. 4. Restart system if prompted.

🔧 Temporary Workarounds

Restrict software installation

windows

Limit who can install software and require administrative approval for HP software installations

Use application whitelisting

windows

Implement application control policies to prevent unauthorized software execution

🧯 If You Can't Patch

Restrict local administrator privileges to limit installation capabilities
Implement network segmentation to isolate systems with vulnerable software

🔍 How to Verify

Check if Vulnerable:

Check installed HP software versions against advisory, review installation logs for suspicious activity

Check Version:

Check installed programs in Control Panel or use 'wmic product get name,version' for HP software

Verify Fix Applied:

Verify software versions match patched versions in HP advisory, confirm no installation-related security alerts

📡 Detection & Monitoring

Log Indicators:

Unexpected installation processes, privilege escalation attempts during software installation, abnormal process creation

Network Indicators:

Unusual outbound connections following software installation

SIEM Query:

Process creation events where parent process is installer and child process has unexpected behavior

📊 Metadata

CVE ID: CVE-2020-28419

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Published: November 9, 2021

Last Updated: November 21, 2024

🔗 References

https://support.hp.com/us-en/document/c07058567 Vendor Advisory
https://support.hp.com/us-en/document/c07058567 Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Laserjet Managed Mfp E62665 Firmware by Hp

Color Laserjet Cm4540 Mfp Firmware by Hp

Color Laserjet Enterprise Flow Mfp M577 Firmware by Hp

Color Laserjet Enterprise Flow Mfp M680 Firmware by Hp

Color Laserjet Enterprise Flow Mfp M880z Firmware by Hp

Color Laserjet Enterprise M455 Firmware by Hp

Color Laserjet Enterprise M552 Firmware by Hp

Color Laserjet Enterprise M553 Firmware by Hp

Color Laserjet Enterprise M651 Firmware by Hp

Color Laserjet Enterprise M750 Firmware by Hp

Color Laserjet Enterprise M855 Firmware by Hp

Color Laserjet Enterprise M856 Firmware by Hp

Color Laserjet Enterprise Mfp M480 by Hp

Color Laserjet Enterprise Mfp M577 Firmware by Hp

Color Laserjet Enterprise Mfp M680 Firmware by Hp

Color Laserjet Managed E45028 Firmware by Hp

Color Laserjet Managed E75245 Firmware by Hp

Color Laserjet Managed E85055 Firmware by Hp

Color Laserjet Managed Flow Mfp E62675 Firmware by Hp

Color Laserjet Managed Flow Mfp E67550 Firmware by Hp

Color Laserjet Managed Flow Mfp E67560 Firmware by Hp

Color Laserjet Managed Flow Mfp M680 Firmware by Hp

Color Laserjet Managed Flow Mfp M880zm Firmware by Hp

Color Laserjet Managed M553 Firmware by Hp

Color Laserjet Managed M651 Firmware by Hp

Color Laserjet Managed Mfp E62655 Firmware by Hp

Color Laserjet Managed Mfp E67550 Firmware by Hp

Color Laserjet Managed Mfp E67560 Firmware by Hp

Color Laserjet Managed Mfp E67650 Firmware by Hp

Color Laserjet Managed Mfp E77422 by Hp

Color Laserjet Managed Mfp E77428 by Hp

Color Laserjet Managed Mfp M680 Firmware by Hp

Color Laserjet Managed Mfp M775 Firmware by Hp

Color Laserjet Pro M154 Firmware by Hp

Color Laserjet Pro M155 Firmware by Hp

Color Laserjet Pro M156 Firmware by Hp

Color Laserjet Pro M252dw Firmware by Hp

Color Laserjet Pro M252n Firmware by Hp

Color Laserjet Pro M255 Firmware by Hp

Color Laserjet Pro M452dn Firmware by Hp

Color Laserjet Pro M452dw Firmware by Hp

Color Laserjet Pro M452nw Firmware by Hp

Color Laserjet Pro Mfp M176 Firmware by Hp

Color Laserjet Pro Mfp M176 Firmware by Hp

Color Laserjet Pro Mfp M177 Firmware by Hp

Color Laserjet Pro Mfp M180 Firmware by Hp

Color Laserjet Pro Mfp M181 Firmware by Hp

Color Laserjet Pro Mfp M182 Firmware by Hp

Color Laserjet Pro Mfp M183 Firmware by Hp

Color Laserjet Pro Mfp M274n Firmware by Hp

Color Laserjet Pro Mfp M277dw Firmware by Hp

Color Laserjet Pro Mfp M277n Firmware by Hp

Color Laserjet Pro Mfp M280 Firmware by Hp

Color Laserjet Pro Mfp M281 Firmware by Hp

Color Laserjet Pro Mfp M282 Firmware by Hp

Color Laserjet Pro Mfp M283 Firmware by Hp

Color Laserjet Pro Mfp M377 Firmware by Hp

Color Laserjet Pro Mfp M476 Firmware by Hp

Color Laserjet Pro Mfp M477 Firmware by Hp

Deskjet 2600 Firmware by Hp

Deskjet 2700 Firmware by Hp

Deskjet 3630 Firmware by Hp

Deskjet 3700 Firmware by Hp

Deskjet 3755 Firmware by Hp

Deskjet 3790 Firmware by Hp

Deskjet Ink Advantage 2600 Firmware by Hp

Deskjet Ink Advantage 2700 Firmware by Hp

Deskjet Ink Advantage 3700 Firmware by Hp

Deskjet Ink Advantage 3830 Firmware by Hp

Deskjet Ink Advantage 5000 Firmware by Hp

Deskjet Ink Advantage Ultra 5730 Firmware by Hp

Deskjet Plus 4100 Firmware by Hp

Deskjet Plus Ink Advantage 6000 Firmware by Hp

Deskjet Plus Ink Advantage 6400 Firmware by Hp

Envy 5000 Firmware by Hp

Envy 6000 Firmware by Hp

Envy Photo 7100 Firmware by Hp