CVE-2024-51979

Name of the Vulnerable Software and Affected Versions: HP IPP versions (affected versions not specified)

Description: An authenticated attacker can trigger a stack-based buffer overflow by sending a malformed request to the HTTP service (TCP port 80), the HTTPS service (TCP port 443), or the IPP service (TCP port 631). The malformed request contains an empty Origin header value and a malformed Referer header value. The Referer header value triggers a stack-based buffer overflow when the host value in the Referer header is processed and has a length greater than 64 bytes.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.