XSS in HP App for Android via Outdated Version
CVE-2026-1578 Published on February 13, 2026

HP App – Potential Cross-Site Scripting
HP App for Android is potentially vulnerable to cross-site scripting (XSS) when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities.

NVD

Weakness Type

What is a XSS Vulnerability?

The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

CVE-2026-1578 has been classified to as a XSS vulnerability or weakness.

Affected Versions

HP Inc HP App:

Before <26.0.0.6234 is affected.

Exploit Probability

EPSS

0.03%

Percentile

8.02%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

XSS in HP App for Android via Outdated VersionCVE-2026-1578 Published on February 13, 2026

Weakness Type

What is a XSS Vulnerability?

Affected Versions

Exploit Probability

XSS in HP App for Android via Outdated Version
CVE-2026-1578 Published on February 13, 2026