CVE-2026-1578 HP — Exploit & Vulnerability Details MEDIUM

Parameter	Value
CVSS	5.1 (MEDIUM)
Type	CWE-79 (Cross-Site Scripting (XSS) (Межсайтовый скриптинг))
Vendor	HP
Public PoC	No

HP App for Android is potentially vulnerable to cross-site scripting (XSS) when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities.

Attack Parameters

Attack Vector

Local

Нужен локальный доступ

Attack Complexity

Low

Легко эксплуатировать

Attack Requirements

None

Нет дополнительных условий

Privileges Required

None

Права не нужны

User Interaction

None

Не нужно действие пользователя

Impact Assessment

Confidentiality

Low

Частичная утечка данных

Integrity

None

Нет модификации данных

Availability

None

Нет нарушения работы

CVSS Vector v4.0

Weakness Type (CWE)

CWE-79 Cross-Site Scripting (XSS) (Межсайтовый скриптинг)

References 1

https://support.hp.com/us-en/document/ish_14083522-14083606-16/hpsbgn04082

hp-security-alert@hp.com

Share Post Share Share Share

Related Vulnerabilities

Menu

CVE-2026-1578

Attack Parameters

Impact Assessment

CVSS Vector v4.0

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-1902

CVE-2026-2915

CVE-2026-23131

CVE-2026-1997

CVE-2026-1996

CVE Details

Editor's Choice