Execution of arbitrary code
Insufficient solution bundle signature validation potentially allows execution of arbitrary code.
Perform the following two steps to mitigate the vulnerability.
Update firmware for impacted printers as indicated in the table below. To obtain the updated firmware, follow these steps:
Go to HP Software and Driver Downloads to find your printer software and driver webpage.
Scroll down and click Firmware from the category list.
Select the Download button to download the firmware.
> note:
>
> Some FutureSmart printers have two available firmware platforms - FutureSmart 3 (FS3) and FutureSmart 4 (FS4). Select the appropriate firmware version for the required FutureSmart platform.
Open the printer EWS, click the General tab, click the Solution Installer page, then locate the Solution Verification Settings section.
Select the checkbox for Enable Extended Signature Verification.