Authentication bypass
A potential security vulnerability has been identified with HP MFP Digital Sending Software running on Windows. The vulnerability could cause authentication to be disabled for managed devices. This could allow access to the devices from the Digital Sending Software without authentication.
The vulnerability can be avoided as follows. When using the Configuration Template feature added in version 4.91 of the HP MFP Digital Sending Software:
Ensure that authentication is specified in all device templates.
Reconfigure all devices previously configured using templates with these revised templates.
> note:
>
> The procedure above is needed only if authentication is required, and the device had previously been configured using a template that did not include authentication settings.