Lucene search

HP, HP Product Security Response Team (PSRT)HP:C06909254

HistorySep 15, 2020 - 12:00 a.m.

HPSBPI03687 rev. 3 - Certain HP LaserJet Printer and MFP Products and JetDirect Print Server Products - Information Disclosure

2020-09-1500:00:00

HP, HP Product Security Response Team (PSRT)

support.hp.com

638

3.1 Low

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

2.9 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:M/Au:N/C:P/I:N/A:N

JSON

Potential Security Impact

Information Disclosure

Source: HP, HP Product Security Response Team (PSRT)

Reported by: Broadcom

VULNERABILITY SUMMARY

A potential security vulnerability has been identified for certain HP printers and MFPs. A Broadcom wireless vulnerability known as “Kr00k” (CVE-2019-15126) could be exploited remotely resulting in disclosure of information.

RESOLUTION

HP has provided firmware updates for potentially impacted wireless capable printers and printers using a JetDirect wireless print accessory in the table below.

To obtain the updated firmware, go to the HP Software site and search for your printer model.

> note:
>
> For firmware marked with *, please contact HP support to obtain the firmware update.

Product name

Model Numbers

Firmware Version

—|—|—

HP JetDirect 3000w

J8030A

Locate firmware for printer in chart below

HP JetDirect 2900nw

J8031A

Locate firmware for printer in chart below

HP JetDirect 3100w

3JN69A

Locate firmware for printer in chart below

HP Color LaserJet Enterprise M552

B5L23A

FS4: 4.11.0.1 (or higher) *

HP Color LaserJet Enterprise M553

HP Color LaserJet Managed M553

B5L25A, B5L26A, BL27A, B5L38A, B5L39A

FS4: 4.11.0.1 (or higher) *

HP Color LaserJet Enterprise M652

J7Z98A, J7Z99A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Enterprise M653

J8A04A, J8A05A, J8A06A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Enterprise M751

HP Color LaserJet Managed E75245

T3U43A, T3U44A, T3U64A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Enterprise M856

HP Color LaserJet Managed E85055

T3U51A, T3U52A, T3U66A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Enterprise MFP M577

HP Color LaserJet Enterprise Flow MFP M577

B5L46A, B5L47A, B5L48A, B5L54A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Enterprise MFP M681

HP Color LaserJet Enterprise flow MFP M681

J8A10A, J8A11A, J8A12A, J8A13A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Enterprise MFP M682

HP Color LaserJet Enterprise flow MFP M682

J8A16A, J8A17A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Enterprise MFP M776

HP Color LaserJet Enterprise Flow MFP M776

T3U55A, T3U56A, 3WT91A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed E55040

3GX98A, 3GX99A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed E65050/60

L3U55A, L3U56A, L3U57A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed flow MFP E77822/25/30

X3A77A, X3A80A, X3A83A, Z8Z01A, Z8Z03A, Z8Z05A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed MFP E57540

HP Color LaserJet Managed flow MFP E57540

3GY25A, 3GY26A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed MFP E67550/60

HP Color LaserJet Managed flow MFP E67550/60

L3U66A, L3U67A, L3U69A, L3U70A,

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed MFP E67650/60

3GY31A, 3GY32A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed MFP E77422/28

5CM75A, 5CM76A, 5CM77A, 5CM78A, 5CM79A, 5RC91A, 5RC92A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed MFP E77822/25/30

X3A78A, X3A81A, X3A84A, Z8Z00A, Z8Z02A, Z8Z04A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed MFP E78223/28

8GS12A, 8GS13A, 8GS14A, 8GS15A, 8GS36A, 8GS37A, 8GS43A, 8GS44A, 8GS50A, 17F27AW, 19GSAW

FS4: 4.11.01 (or higher)

HP Color LaserJet Managed MFP E87640/50/60

HP Color LaserJet Managed flow MFP E87640/50/60

X3A86A, X3A87A, X3A89A, X3A90A, X3A92A, X3A93A, Z8Z12A, Z8Z13A, Z8Z14A, Z8Z15A, Z8Z16A, Z8Z17A, 5CM63A, 5CM64A, 5CM65A, 5CM66A, 5RC87A, 5FM80A, 5FM81A, 5FM82A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Managed MFP M577

HP Color LaserJet Managed Flow MFP M577

B5L49A, B5L50A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise M506

HP LaserJet Managed M506

F2A68A, F2A69A, F2A70A, F2A71A, F2A66A, F2A67A

FS4: 4.11.0.1 (or higher) *

HP LaserJet Enterprise M507

HP LaserJet Managed E50145

1PV86A, 1PV87A, 1PV88A, 1PV89A, 1PU51A, 1PU52A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise M605

HP LaserJet Managed M605

E6B69A, E6B70A. E6B71A, L3U53A, L3U54A

FS4: 4.11.0.1 (or higher) *

HP LaserJet Enterprise M606

E6B72A, E6B73A

FS4: 4.11.0.1 (or higher) *

HP LaserJet Enterprise M607

K0Q14A, K0Q15A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise M608

K0Q17A, K0Q18A, K0Q19A, M0P32A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise M609

K0Q20A, K0Q21A, K0Q22A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise M610

7PS81A, 7PS82A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise M611

7PS83A, 7PS84A, 7PS85A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise M612

7PS86A, 7PS87A, 7PS88A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise MFP M527

HP LaserJet Enterprise Flow MFP M527z

F2A76A, F2A77A, F2A78A, F2A81A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise MFP M528

HP LaserJet Managed MFP E52645

1PV49A, 1PS54A, 1PS55A, 1PV64A, 1PV65A, 1PV66A, 1PV67A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise MFP M631

HP LaserJet Enterprise flow MFP M631

J8J63A, J8J64A, J8J65A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise MFP M632

HP LaserJet Enterprise flow MFP M632

J8J70A, J8J71A, J8J72A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise MFP M633

HP LaserJet Enterprise flow MFP M633

J8J76A, J8J78A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise MFP M634

HP LaserJet Enterprise Flow MFP M634

7PS94A, 7PS95A, 7PS96A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise MFP M635

HP LaserJet Enterprise Flow MFP M635

7PS97A, 7PS98A, 7PS99A

FS4: 4.11.0.1 (or higher)

HP LaserJet Enterprise MFP M636

HP LaserJet Enterprise Flow MFP M636

7PT00A, 7PT01A

FS4: 4.11.0.1 (or higher)

HP LaserJet Managed E50045

3GN19A

FS4: 4.11.0.1 (or higher)

HP LaserJet Managed E60055/65/75

M0P33A, M0P35A, M0P36A, M0P39A, M0P40A

FS4: 4.11.0.1 (or higher)

HP LaserJet Managed MFP E52545

HP LaserJet Managed flow MFP E52545c

3GY19A, 3GY20A

FS4: 4.11.0.1 (or higher)

HP LaserJet Managed MFP E62555/65

HP LaserJet Managed flow MFP E62555/65/75

J8J66A, J8J67A, J8J73A, J8J74A, J8J79A, J8J80A

FS4: 4.11.0.1 (or higher)

HP LaserJet Managed MFP E62655/65

HP LaserJet Managed Flow MFP E62675

3GY14A, 3GY15A, 3GY16A, 3GY17A, 3GY18A

FS4: 4.11.0.1 (or higher)

HP LaserJet Managed MFP E72425/30

5CM68A, 5CM69A, 5CM70A, 5CM71A, 5CM72A, 5RC89A, 5RC90A

FS4: 4.11.0.1 (or higher)

HP LaserJet Managed MFP E72525/30/35

HP LaserJet Managed flow MFP E72525/30/35

X3A59A, X3A60A, X3A62A, X3A63A, X3A65A, X3A66A, Z8Z06A, Z8Z07A, Z8Z08A, Z8Z09A, Z8Z010A, Z8Z011A

FS4: 4.11.0.1 (or higher)

HP LaserJet Managed MFP E82540/50/60

HP LaserJet Managed flow MFP E82540/50/60

X3A68A, X3A69A, X3A71A, X3A72A, X3A74A, X3A75A, X3A79A, X3A82A, Z8Z18A, Z8Z19, AZ8Z20A, Z8Z22A, Z8Z23A, 5CM59A, 5RC83A, 5CM58A, 5CM60A, 5RC84A, 5CM61A, 5RC85A, 5FM77A, 5FM78A

FS4: 4.11.0.1 (or higher)

HP LaserJet Managed MFP M527

HP LaserJet Managed Flow MFP M527cm

F2A79A, F2A80A

FS4: 4.11.0.1 (or higher)

HP PageWide Color 755

4PZ47A

FS4: 4.11.0.1 (or higher)

HP PageWide Color MFP 774

4PZ43A, 4PA44A

FS4: 4.11.0.1 (or higher)

HP PageWide Color MFP 779

4PZ45A, 4PZ46A

FS4: 4.11.0.1 (or higher)

HP PageWide Enterprise Color 556

G1W46A, G1W46V, G1W47A, G1W47V

FS4: 4.11.0.1 (or higher)

HP PageWide Enterprise Color 765

J7Z04A

FS4: 4.11.0.1 (or higher)

HP PageWide Enterprise Color Flow MFP 785

J7Z11A, J7Z12A

FS4: 4.11.0.1 (or higher)

HP PageWide Enterprise Color MFP 586

HP PageWide Enterprise Color flow MFP 586z

G1W39A, G1W40A, G1W41A

FS4: 4.11.0.1 (or higher)

HP PageWide Enterprise Color MFP 780

J7Z09A, J7Z10A

FS4: 4.11.0.1 (or higher)

HP PageWide Managed Color E55650

L3U44A

FS4: 4.11.0.1 (or higher)

HP PageWide Managed Color E75160

J7Z06A

FS4: 4.11.0.1 (or higher)

HP PageWide Managed Color flow MFP E77660z

Z5G77A, J7Z03A, J7Z07A

FS4: 4.11.0.1 (or higher)

HP PageWide Managed Color MFP E58650dn

HP PageWide Managed Color flow MFP E58650z

L3U42A, L3U43A

FS4: 4.11.0.1 (or higher)

HP PageWide Managed Color MFP E77650

HP PageWide Managed Color Flow MFP E77650/60z

J7Z13A, Z5G79A, J7Z08A, J7Z14A, J7Z05A

FS4: 4.11.0.1 (or higher)

HP PageWide Managed Color MFP P77440

Y3Z60A

FS4: 4.11.0.1 (or higher)

HP PageWide Managed Color MFP P77940/50/60

Y3Z61A, Y3Z62A, Y3Z63A, Y3Z64A, Y3Z65A, Y3Z66A, Y3Z68A, 2GP22A, 2GP23A, 2GP25A, 2GP26A, 5ZN98A, 5ZN99A, 5ZP00A, 5ZP01A

FS4: 4.11.0.1 (or higher)

HP PageWide Managed Color P75250

Y3Z49A

FS4: 4.11.0.1 (or higher)

HP ScanJet Enterprise flow N9120 fn2 Document Scanner

L2763A

FS4: 4.11.0.1 (or higher)

HP Color LaserJet Pro M254

T6B59A, T6B60A, T6B61A

20201021 (or higher)

HP Color LaserJet Pro MFP M180, M181

T6B70A, T6B71A, T6B74A

20201021 (or higher)

HP Color LaserJet Pro MFP M377, M477

T6B51A, T6B52A

20201021 (or higher)

3.1 Low

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

2.9 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:M/Au:N/C:P/I:N/A:N

JSON

HPSBPI03687 rev. 3 - Certain HP LaserJet Printer and MFP Products and JetDirect Print Server Products - Information Disclosure

Potential Security Impact

VULNERABILITY SUMMARY

RESOLUTION

Related