CVE-2024-0407 Certain HP Enterprise LaserJet, HP LaserJet Managed Printers – Potential Information Disclosure

2024-02-2018:35:41

www.cve.org

cve-2024-0407

enterprise

managed printers

information disclosure

ca certificate

AI Score

6.6

Confidence

Low

EPSS

Percentile

9.0%

JSON

Certain HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially vulnerable to information disclosure, when connections made by the device back to services enabled by some solutions may have been trusted without the appropriate CA certificate in the device’s certificate store.

CNA Affected

[
  {
    "vendor": "HP Inc.",
    "product": "Certain HP Enterprise LaserJet, HP LaserJet Managed Printers",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "See HP security bulletin reference for affected versions",
        "status": "affected"
      }
    ]
  }
]

References

support.hp.com/us-en/document/ish_10174094-10174120-16