HPSBPI06327 rev. 1 - Execution of Arbitrary Code for HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers

Potential Security Impact

Execution of arbitrary code

VULNERABILITY SUMMARY

Solution application signature checking may allow potential execution of arbitrary code.

RESOLUTION

Perform the following steps to help mitigate the vulnerability.

1. Update firmware for impacted printers as indicated in the table below. To obtain the updated firmware, go to www.hp.com and follow these steps:

1. Click Support at the top of the page, then click Software & drivers. 

2. Type the appropriate product name or model number from the table below into the search field.

3. Click Find. 

4. Scroll down and click Firmware from the category list. 

5. Click the Download button for the appropriate firmware. 

> note:
>
> Some FutureSmart printers have two available firmware platforms - FutureSmart 3 (FS3) and FutureSmart 4 (FS4). Select the appropriate firmware version for the applicable FutureSmart platform.

2. Open the printer EWS, click the General tab, click the Solution Installer page, and then find the Solution Verification Settings section.

3. Enable the Enable extended signature verification setting.

Temporary mitigation settings

Perform the following actions to prevent the vulnerability in the short term:

• Set the Local Administrator password for the Embedded Web Server (EWS).

Open the printer EWS, click the Security tab, then locate the Local Administrator Password section.

• Disable Allow firmware upgrades sent as print jobs (Port 9100) setting.

Open the printer EWS, click the Security tab, and then find the Firmware Upgrade Security section.

• Enable the Enable extended signature verification setting checkbox.

Open the printer EWS, click the General tab, click the Solution Installer page, and then find the Solution Verification Settings section.

These recommendations are documented in HP Printing Security Best Practices for HP LaserJet Enterprise Printers.

• See page 28 for EWS administrator password configuration.

• See page 31 for “Allow firmware upgrades sent as print jobs” configuration.

Product Name

|

Model Numbers

|

Firmware Revision

—|—|—

HP Color LaserJet CM4540 MFP

|

CC419A, CC420A, CC421A

|

FS3: 2309021_581893 (or higher)

HP Color LaserJet Managed flow MFP M880zm

HP Color LaserJet Enterprise flow MFP M880z

|

D7P70A, A2W75A, A2W76A, D7P70A, D7P71A, L3U51A, L3U52A

|

FS3: 2309021_581898 (or higher)

FS4: 2408067_049135 (or higher)

HP Color LaserJet Enterprise M552

|

B5L23A

|

FS3: 2309021_581886 (or higher)

HP Color LaserJet Managed M553

HP Color LaserJet Enterprise M553

|

B5L24A, B5L25A, B5L26A, BL27A, B5L38A, B5L39A

|

FS4: 2408067_049141 (or higher) *

FS3: 2309021_581886 (or higher)

HP Color LaserJet Managed M651

HP Color LaserJet Enterprise M651

|

CZ255A, CZ256A, CZ257A, H0DC9A, L8Z07A

|

FS4: 2408067_049131 (or higher)

FS3: 2309021_581895 (or higher)

HP Color LaserJet Enterprise M652

|

J7Z98A, J7Z99A

|

FS4: 2408067_049158 (or higher)

HP Color LaserJet Enterprise M653

|

J8A04A, J8A05A, J8A06A

|

FS4: 2408067_049158 (or higher)

HP Color LaserJet Enterprise M750

|

D3L08A, D3L09A, D3L10A

|

FS3: 2309021_581902 (or higher)

HP Color LaserJet Managed E75245

HP Color LaserJet Enterprise M751

|

T3U43A, T3U44A, T3U64A

|

FS4: 2408067_049164 (or higher)

HP Color LaserJet Enterprise M855

|

A2W77A, A2W78A, A2W79A, D7P72A, D7P73A

|

FS4: 2408067_049127 (or higher)

FS3: 2309021_581899 (or higher)

HP Color LaserJet Enterprise Flow MFP M577

HP Color LaserJet Enterprise MFP M577

|

B5L46A, B5L47A, B5L48A, B5L54A

|

FS4: 2408071_000209 (or higher)

FS3: 2309021_581889 (or higher)

HP Color LaserJet Enterprise Flow MFP M680

HP Color LaserJet Enterprise MFP M680

|

CZ248A, CZ249A, CZ250A, CA251A

|

FS4: 2408067_049134 (or higher)

FS3: 2309021_581900 (or higher)

HP Color LaserJet Enterprise flow MFP M681

HP Color LaserJet Enterprise MFP M681

|

J8A10A, J8A11A J8A12A, J8A13A

|

FS4: 2408071_000205 (or higher)

HP Color LaserJet Enterprise flow MFP M682

HP Color LaserJet Enterprise MFP M682

|

J8A16A, J8A17A

|

FS4: 2408071_000205 (or higher)

HP Color LaserJet Enterprises CP5525

|

CE707A,CE708A,CE709A

|

FS3: 2309021_581892 (or higher)

HP Color LaserJet Managed E55040dw

|

3GX98A

|

FS4: 2408067_049141 (or higher)

HP Color LaserJet Managed E65050/60

|

L3U55A, L3U56A, L3U57A

|

FS4: 2408067_049158 (or higher)

HP Color LaserJet Managed flow MFP E77822/25/30

|

X3A77A, X3A80A, X3A83A, Z8Z01A, Z8Z0A, Z8Z05A

|

FS4: 2408071_000142 (or higher)

HP Color LaserJet Managed flow MFP E57540

HP Color LaserJet Managed MFP E57540

|

3GY25A, 3GY26A

|

FS4: 2408071_000209 (or higher)

HP Color LaserJet Managed flow MFP E67550/60

HP Color LaserJet Managed MFP E67550/60

|

L3U66A, L3U67A, L3U69A, L3U70A,

|

FS4: 2408071_000205 (or higher)

HP Color LaserJet Managed MFP E77422/28

|

5CM75A, 5CM76A, 5CM77A, 5CM78A, 5CM79A, 5RC91A, 5RC92A

|

FS4: 2408071_000121 (or higher)

HP Color LaserJet Managed MFP E77822/25/30

|

X3A78A, X3A81A, X3A84A, Z8Z00A, Z8Z02A, Z8Z04A

|

FS4: 2408071_000142 (or higher)

HP Color LaserJet Managed flow MFP E87640/50/60

HP Color LaserJet Managed MFP E87640/50/60

|

X3A86A, X3A87A,X3A89A, X3A90A, X3A92A, X3A93A, Z8Z12A, Z8Z13A, Z8Z14A, Z8Z15A, Z8Z16A, Z8Z17A,

|

FS4: 2408071_000187 (or higher)

HP Color LaserJet Managed Flow MFP M577

HP Color LaserJet Managed MFP M577

|

B5L49A, B5L50A

|

FS4: 2408071_000209 (or higher)

FS3: 2309021_581889 (or higher)

HP Color LaserJet Managed Flow MFP M680

HP Color LaserJet Managed MFP M680

|

L3U47A, L3U48A

|

FS4: 2408067_049134 (or higher)

FS3: 2309021_581900 (or higher)

HP LaserJet Enterprise 500 Color M551

|

CF081A,CF082A,CF083A

|

FS3: 2309021_581909 (or higher)

HP LaserJet Enterprise color flow MFP M575

HP LaserJet Enterprise 500 color MFP M575

|

CD644A, CD645A, CD646A

|

FS4: 2408067_049137 (or higher)

FS3: 2309021_581910 (or higher)

HP LaserJet Enterprise Flow MFP M525

HP LaserJet Enterprise 500 MFP M525f

|

CF116A, CF117A, CF118A

|

FS4: 2408067_049133 (or higher)

FS3: 2309021_581897 (or higher)

HP LaserJet Enterprise 600 M601

|

CE989A, CE990A

|

FS3: 2309021_581908 (or higher)

HP LaserJet Enterprise 600 M602

|

CE991A, CE992A, CE993A

|

FS3: 2309021_581908 (or higher)

HP LaserJet Enterprise 600 M603

|

CE994A, CE995A, CE996A

|

FS3: 2309021_581908 (or higher)

HP Color LaserJet Managed MFP M775

HP LaserJet Enterprise 700 color MFP M775

|

CF304A, CC522A, CC523A, CC524A, L3U49A, L3U50A

|

FS4: 2408067_049139 (or higher)

FS3: 2309021_581906 (or higher)

HP LaserJet Enterprise 700 M712

|

CF235A, CF236A, CF238A

|

FS3: 2309021_581905 (or higher)

HP LaserJet Managed flow MFP M630

HP LaserJet Enterprise flow MFP M630

|

B3G86A, P7Z47A, L3U62A, P7Z48A

|

FS4: 2408067_049129 (or higher)

FS3: 2309021_581882 (or higher)

HP LaserJet Managed flow MFP M830

HP LaserJet Enterprise flow MFP M830

|

CF367A, L3U65A

|

FS4: 2408067_049128 (or higher)

FS3: 2309021_581896 (or higher)

HP LaserJet Enterprise M4555 MFP

|

CE502A, CE503A, CE504A, CE738A

|

FS3: 2309021_581901 (or higher)

HP LaserJet Managed M506

HP LaserJet Enterprise M506

|

F2A68A, F2A69A, F2A70A, F2A71A, F2A66A, F2A67A

|

FS4: 2408067_049155 (or higher) *

FS3: 2309021_581888 (or higher)

HP LaserJet Managed E50145

HP LaserJet Enterprise M507

|

1PV86A, 1PV87A, 1PV88A, 1PV89A, 1PU51A, 1PU52A

|

FS4: 2408067_049154 (or higher)

HP LaserJet Enterprise M604

|

E6B67A, E6B68A

|

FS4: 2408067_049146 (or higher) *

FS3: 2309021_581887 (or higher)

HP LaserJet Managed M605

HP LaserJet Enterprise M605

|

E6B69A, E6B70A. E6B71A, L3U53A, L3U54A

|

FS4: 2408067_049146 (or higher ) *

FS3: 2309021_581887 (or higher)

HP LaserJet Enterprise M606

|

E6B72A, E6B73A

|

FS4: 2408067_049146 (or higher) *

FS3: 2309021_581887 (or higher)

HP LaserJet Enterprise M607

|

K0Q14A, K0Q15A

|

FS4:2408067_049153 (or higher)

HP LaserJet Enterprise M608

|

K0Q17A, K0Q18A, K0Q19A, M0P32A

|

FS4:2408067_049153 (or higher)

HP LaserJet Enterprise M609

|

K0Q20A, K0Q21A, K0Q22A

|

FS4:2408067_049153 (or higher)

HP LaserJet Enterprise M806

|

CZ244A, CZ245A

|

FS4: 2408067_049167 (or higher)

FS3: 2309021_581903 (or higher)

HP LaserJet Enterprise Flow MFP M527z

HP LaserJet Enterprise MFP M527

|

F2A76A, F2A77A, F2A78A,F2A81A

|

FS4: 2408071_000203 (or higher)

FS3: 2309021_581883 (or higher)

HP LaserJet Managed MFP E52645

HP LaserJet Enterprise MFP M528

|

1PV49A, 1PS54A, 1PS55A, 1PV64A, 1PV65A, 1PV66A, 1PV67A

|

FS4: 2408071_000190 (or higher)

HP LaserJet Managed MFP M630

HP LaserJet Enterprise MFP M630

|

B3G84A, B3G85A, J7X28A, L3U61A

|

FS4: 2408067_049129 (or higher)

FS3: 2309021_581882 (or higher)

HP LaserJet Enterprise flow MFP M631

HP LaserJet Enterprise MFP M631

|

J8J63A, J8J64A, J8J65A

|

FS4: 2408071_000197 (or higher)

HP LaserJet Enterprise flow MFP M632

HP LaserJet Enterprise MFP M632

|

J8J70A, J8J71A, J8J72A

|

FS4: 2408071_000197 (or higher)

HP LaserJet Enterprise flow MFP M633

HP LaserJet Enterprise MFP M633

|

J8J76A, J8J78A

|

FS4: 2408071_000197 (or higher)

HP LaserJet Managed MFP M725

HP LaserJet Enterprise MFP M725

|

CF066A, CF067A, CF068A, CF069A, L3U63A, L3U64A

|

FS4: 2408067_049132 (or higher)

FS3: 2309021_581904 (or higher)

HP LaserJet Managed color flow MFP M575

HP LaserJet Managed 500 color MFP M575

|

L3U45a, L3U46A

|

FS4: 2408067_049137 (or higher)

FS3: 2309021_581910 (or higher)

HP LaserJet Managed Flow MFP M525

HP LaserJet Managed 500 MFP M525

|

L3U59A, L3U60A

|

FS4: 2408067_049133 (or higher)

FS3: 2309021_581897 (or higher)

HP LaserJet Managed E50045

|

3GN19A

|

FS4: 2408067_049155 (or higher) *

HP LaserJet Managed E60055/65/75

|

M0P33A, M0P35A, M0P36A, M0P39A, M0P40A

|

FS4:2408067_049153 (or higher)

HP LaserJet Managed flow MFP E52545c

HP LaserJet Managed MFP E52545

|

3GY19A, 3GY20A

|

FS4: 2408071_000203 (or higher)

HP LaserJet Managed flow MFP E62555/65/75

HP LaserJet Managed MFP E62555/65

|

J8J66A, J8J67A, J8J73A, J8J74A, J8J79A, J8J80A

|

FS4: 2408071_000197 (or higher)

HP LaserJet Managed MFP E72425/30

|

5CM68A, 5CM69A, 5CM70A, 5CM71A, 5CM72A, 5RC89A, 5RC90A

|

FS4: 2408071_000181 (or higher)

HP LaserJet Managed flow MFP E72525/30/35

HP LaserJet Managed MFP E72525/30/35

|

X3A59A, X3A60A,X3A62A, X3A63A, X3A65A, X3A66A, Z8Z06A, Z8Z07A, Z8Z08A, Z8Z09A, Z8Z010A, Z8Z011A

|

FS4: 2408071_000120 (or higher)

HP LaserJet Managed flow MFP E82540/50/60

HP LaserJet Managed MFP E82540/50/60

|

X3A68A,X3A69A, X3A71A, X3A72A, X3A74A, X3A75A, X3A79A, X3A82A, Z8Z18A, Z8Z19, AZ8Z20A, Z8Z22A, Z8Z23A

|

FS4: 2408071_000103 (or higher)

HP LaserJet Managed Flow MFP M527z

HP LaserJet Managed MFP M527

|

F2A79A, F2A80A

|

FS4: 2408071_000203 (or higher)

FS3: 2309021_581883 (or higher)

HP OfficeJet Managed Color flow MFP X585

HP OfficeJet Enterprise Color flow MFP X585

|

B5L06A, B5L07A, L3U41A

|

FS4: 2408067_049136 (or higher)

FS3: 2309021_581884 (or higher)

HP OfficeJet Managed Color MFP X585

HP OfficeJet Enterprise Color MFP X585

|

B5L04A, B5L05A, L3U40A

|

FS4: 2408067_049136 (or higher)

FS3: 2309021_581884 (or higher)

HP OfficeJet Enterprise Color X555

|

C2S11A, C2S12A,L1H45A

|

FS4: 2408067_049130 (or higher)

FS3: 2309021_581885 (or higher)

HP PageWide Color 755

|

4PZ47A

|

FS4: 2408067_049143 (or higher)

HP PageWide Color MFP 774

|

4PZ43A, 4PA44A

|

FS4: 2408067_049156 (or higher)

HP PageWide Color MFP 779

|

4PZ45A, 4PZ46A

|

FS4: 2408067_049156 (or higher)

HP PageWide Enterprise Color 556

|

G1W46A, G1W46V, G1W47A, G1W47V

|

FS4: 2408067_049165 (or higher)

FS3: 2309021_581890 (or higher)

HP PageWide Enterprise Color 765

|

J7Z04A

|

FS4: 2408067_049143 (or higher)

HP PageWide Enterprise Color Flow MFP 785

|

J7Z11A, J7Z12A

|

FS4: 2408071_000196 (or higher)

HP PageWide Enterprise Color flow MFP 586z

HP PageWide Enterprise Color MFP 586

|

G1W39A, G1W40A, G1W41A

|

FS4: 2408071_000199 (or higher)

FS3: 2309021_581891 (or higher)

HP PageWide Enterprise Color Flow MFP 780f

HP PageWide Enterprise Color MFP 780

|

J7Z09A, J7Z10A

|

FS4: 2408071_000196 (or higher)

HP PageWide Managed Color E55650

|

L3U44A

|

FS4: 2408067_049165 (or higher)

FS3: 2309021_581890 (or higher)

HP PageWide Managed Color E75160

|

J7Z06A

|

FS4: 2408067_049143 (or higher)

HP PageWide Managed Color flow MFP E77660z

|

Z5G77A, J7Z03A, J7Z07A

|

FS4: 2408071_000196 (or higher)

HP PageWide Managed Color flow MFP E58650z

HP PageWide Managed Color MFP E58650dn

|

L3U42A,L3U43A

|

FS4: 2408071_000199 (or higher)

FS3: 2309021_581891 (or higher)

HP PageWide Managed Color Flow MFP E77650/60z

HP PageWide Managed Color MFP E77650

|

J7Z13A, Z5G79A, J7Z08A, J7Z14A, J7Z05A

|

FS4: 2408071_000196 (or higher)

HP PageWide Managed Color MFP P77440

|

Y3Z60A

|

FS4: 2408067_049156 (or higher)

HP PageWide Managed Color MFP P77940/50/60

|

Y3Z61A, Y3Z62A, Y3Z63A, Y3Z64A, Y3Z65A, Y3Z66A, Y3Z68A, 2GP22A, 2GP23A, 2GP25A, 2GP26A, 5ZN98A, 5ZN99A, 5ZP00A, 5ZP01A

|

FS4: 2408067_049156 (or higher)

HP PageWide Managed Color P75250

|

Y3Z49A

|

FS4: 2408067_049143 (or higher)

HP Scanjet Enterprise 8500 fn1 Document Capture Workstation

|

L2717A

|

FS3: 2309021_581894 (or higher)

HP Digital Sender flow 8500 fn2 Document Capture Workstation

|

L2762A

|

FS4: 2408067_049160 (or higher)

HP ScanJet Enterprise flow N9120 fn2 Document Scanner

|

L2763A

|

FS4: 2408067_049162 (or higher)