PatchSiren

HP Inc. CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH HP Inc. CVE published 2026-06-15

CVE-2026-5064

A potential security vulnerability has been identified in the HP One Agent for certain HP PC products. This vulnerability might allow for escalation of privilege and/or denial of service. HP is releasing software updates to mitigate this potential vulnerability.

CRITICAL HP Inc. CVE published 2026-06-01

CVE-2026-0826

A critical buffer overflow vulnerability in Poly Voice products on the Linux platform, triggered when Interactive Connectivity Establishment (ICE) is enabled by an administrator. The flaw could allow remote code execution. The vulnerability is classified as CWE-121 (Stack-based Buffer Overflow) and carries a CVSS 4.0 score of 9.2 (CRITICAL). The vendor attribution is currently uncertain: while the source [truncated]

HIGH HP Inc CVE published 2026-05-20

CVE-2026-8632

CVE-2026-8632 is a high-severity potential vulnerability in HP Linux Imaging and Printing Software. The vendor-reported weakness maps to CWE-77 (OS command injection) and, according to the NVD record, could enable privilege escalation and/or arbitrary code execution under local, low-privilege conditions.

CRITICAL HP Inc CVE published 2026-05-20

CVE-2026-8631

CVE-2026-8631 is a critical issue in HP Linux Imaging and Printing Software, specifically in the hpcups processing path when handling crafted print data. The NVD description says the flaw may allow privilege escalation and/or arbitrary code execution. NVD rates the issue CVSS v4.0 9.3 with network access, no privileges, and no user interaction required in its vector, making this a high-priority exposure f [truncated]