HP Product Security Response TeamHP:C03825817HPSBPI02887 rev.3 - Certain HP LaserJet Pro Printers, Remote Information Disclosure
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:C/A:N
Potential Security Impact
Remote information disclosure
VULNERABILITY SUMMARY
A potential security vulnerability has been identified with certain HP LaserJet Pro printers. The vulnerability could be exploited remotely to gain unauthorized access to data.
RESOLUTION
HP has provided updated printer firmware 2013-07-26, Version:20130703 to resolve this issue. To obtain the updated firmware, go to the HP Software and Drivers page for your product and find the firmware update from the list of available software.
HP LaserJet Pro product name
|
Model
|
Firmware Update version
—|—|—
HP LaserJet Pro P1102w
|
CE657A/CE658A
|
2013-07-26, Version:20130703
HP LaserJet Pro P1606dn
|
CE749A
|
2013-07-26, Version:20130703
HP LaserJet Pro M1212nf MFP
|
CE841A
|
2013-07-26, Version:20130703
HP LaserJet Pro M1213nf MFP
|
CE845A
|
2013-07-26, Version:20130703
HP LaserJet Pro M1214nfh MFP
|
CE842A
|
2013-07-26, Version:20130703
HP LaserJet Pro M1216nfh MFP
|
CE843A
|
2013-07-26, Version:20130703
HP LaserJet Pro M1217nfw MFP
|
CE844A
|
2013-07-26, Version:20130703
HP LaserJet Pro M1218nfs MFP
|
B4K88A
|
2013-07-26, Version:20130703
HP LaserJet Pro CP1025nw
|
CE914A/CE918A
|
2013-07-26, Version:20130703
Related
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:C/A:N