614 matches found
Poly Voice – Possible Remote Control of Certain Poly Devices
In certain scenarios when the admin has enabled Interactive Connectivity Establishment ICE, a buffer overflow could enable remote code execution on Poly Voice products on the Linux platform. HP Poly recommends admins disable ICE connectivity when not required...
SIP Service Providers – Possible Impersonation of Poly Voice Device
An embedded test key and certificate could be extracted from a Poly Voice device using specialized reverse engineering tools. This extracted certificate could be accepted by a SIP service provider if the service provider does not perform proper validation of the device certificate. Service...
Certain HP LaserJet Enterprise and HP LaserJet Managed Printers – Potential Denial of Service & Potential Buffer Overflow
Certain HP LaserJet Enterprise and HP LaserJet Managed Printers may experience a potential buffer overflow and potential denial of service when utilizing the open-source libexpat XML parsing library within their firmware stacks. Update your printer firmware...
HP Security Manager – Potential Remote Code Execution
HP Security Manager is potentially vulnerable to Remote Code Execution due to the use of Microsoft OLE Database library version 18.4 for Microsoft’s SQL Server Express and Microsoft’s SQL Server. HP has provided a software update for potentially affected products...
HP Universal Scan - Potential Information Disclosure
HP Universal Scan is vulnerable to potential information disclosure due to code vulnerability within the product's solution open-source library libssh2. Update your printer software...
NVIDIA GPU Display Driver January 2025 Security Update
NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows, which might allow information disclosure, denial of service, and data tampering. NVIDIA has released updates to mitigate these vulnerabilities. NVIDIA has released updates to...
Certain HP LaserJet Printers – Potential Denial of Service
The HP LaserJet MFP M139 - M142 Printer series and the HP LaserJet MFP M232-M237 Printer Series may be vulnerable to a denial of service attack when a specially crafted request message is sent to port 631. Update your printer firmware...
Clariti Manager - Multiple Stored XSS
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The flaw does not properly neutralize input during a web page generation. The recommendation is to update an impacted device to firmware build 10.12.0.2100 or later. Customers can receive the...
Certain HP Print Products, Digital Sending Products - Potential remote code execution and buffer overflow
Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR. Update your printer firmware...
HPSBHF03604 rev. 2 - Intel Xeon® Platform Firmware Included Unsecure Handling of Certain UEFI Variables
Potential Security Impact Escalation of Privilege, Denial of Service. Source: HP, HP Product Security Response Team PSRT Reported By: Intel VULNERABILITY SUMMARY Insecure handling of UEFI variables in Intel® Xeon® Scalable processors, Intel® Xeon® Processor E5 v4 Family, Intel® Xeon® Processor E5...
HPSBBHF3549 ThinkPwn UEFI BIOS SmmRuntime Escalation of Privilege
Potential Security Impact System downtime, or privilege escalation. Source:HP, HP Product Security Response Team PSRT Reported by: Dmytro Oleksiuk VULNERABILITY SUMMARY A security vulnerability identified with UEFI firmware, dubbed ThinkPwn, has been addressed in certain HP commercial notebook PC...
HPSBPI02263 SSRT3512 rev.2 - Re-release of HPSBMI0002 HP Jetdirect, Remote Unauthorized Access, Denial of Service (DoS)
Potential Security Impact Remote unauthorized access, Denial of Service DoS VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Jetdirect. The vulnerability could be exploited to allow remote unauthorized access or to create a Denial of Service DoS. RESOLUTION HP...
Certain HP ScanJet Pro and Enterprise Devices - Potential Information Disclosure
Certain HP ScanJet Pro and Enterprise devices may be affected by an information disclosure vulnerability that exposes security sensitive information through the web browser interface Update your printer firmware...
Certain HP OfficeJet Pro Printers - Information Disclosure
Certain HP OfficeJet Pro printers may expose information if Cross‑Origin Resource Sharing CORS is misconfigured, potentially allowing unauthorized web origins to access device resource. Update your printer firmware...
Intel PROSet/Wireless WiFi Software November 2025 Security Update
Intel has informed HP of potential security vulnerabilities for some Intel® PROSet/Wireless WiFi Software, which might allow denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential vulnerabilities. HP...
AMD Secure Processor Security Update
AMD has informed HP of a potential security vulnerability in some AMD Secure Processors, which might allow loss of integrity or confidentiality. AMD has released firmware updates to mitigate this vulnerability. AMD has released updates to mitigate the potential vulnerability. HP has identified...
HP Support Assistant - Potential Escalation of Privilege
A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.47.41.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write. HP has identified affected versions and the minimum version that...
HP Touchpoint Analytics Service – Potential Escalation of Privilege
A potential security vulnerability has been identified in the HP Touchpoint Analytics Service for certain HP PC products with versions prior to 4.2.2439. This vulnerability could potentially allow a local attacker to escalate privileges. HP is providing software updates to mitigate this potential...
Elan Fingerprint Sensor Security Update
A potential vulnerability has been identified in certain HP PC products using Elan fingerprint sensor devices, which might allow operating system authentication bypass by spoofing. HP is releasing BIOS and fingerprint sensor driver updates to address the potential vulnerability. Elan has resolved...
Certain HP LaserJet Pro, HP LaserJet Enterprise, HP LaserJet Managed Printers - Potential Remote Code Execution and Potential Elevation of Privilege
Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially be vulnerable to Remote Code Execution and Elevation of Privilege when processing a PostScript print job. Update your printer firmware...
Certain HP LaserJet Pro Printers – Potential Denial of Service
Certain HP LaserJet Pro printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer via IPP Internet Printing Protocol. Update your printer firmware...
HP Universal Print Driver Series (PCL 6 and PostScript) - Potential Security Vulnerabilities
Potential vulnerabilities have been identified in HP Universal Print Driver Series PCL 6 and PostScript involving the following libraries: Update your version of the HP Universal Print Driver Series...
Intel Virtual RAID on CPU (VROC) November 2024 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® Virtual RAID on CPU Intel® VROC software, which might allow escalation of privilege and denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to...
Certain HP LaserJet Printers – Potential Denial of Service
Certain HP LaserJet printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer. The printer displays a “JPEG Unsupported” message which may not clear, potentially blocking queued print jobs. Update your printer firmware...
NVIDIA GPU Display Driver July 2024 Security Update
NVIDIA has informed HP of a potential security vulnerability identified in the NVIDIA® GPU Display Driver for Windows, which might allow code execution, denial of service, escalation of privilege, information disclosure, and data tampering. NVIDIA has released updates to mitigate the vulnerabilit...
Intel Connectivity Performance Suite Installer August 2024 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Connectivity Performance Suite software installers, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the...
HP Advance Mobile Application – Potential Information Disclosure
HP Advance Mobile Applications for iOS and Android are potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. Update your application...
HP System Event Utility – Denial of Service
HP System Event Utility might allow denial of service with elevated arbitrary file writes. This potential vulnerability was remediated with HP System Event Utility version 3.2.16. HP has identified affected versions and the minimum version v3.2.16 or higher that mitigates the potential...
Certain HP LaserJet Pro Printers – Potential Information Disclosure
Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book. Update your printer firmware...
Intel 2025.1 IPU – 13th and 14th Generation Processors Security Update
Intel has informed HP a potential security vulnerability in some 13th and 14th Generation Intel® Core™ Processors, which might allow denial of service. Intel is releasing microcode and UEFI reference code updates to mitigate this potential vulnerability. Intel has released updates to mitigate the...
Intel System Security Report and System Resources Defense
Intel has informed HP of potential security vulnerabilities in some Intel® System Security Report and System Resource Defense PPAM firmware which might allow escalation of privilege or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel h...
AMD Graphics Driver February 2025 Security Update
AMD has informed HP of potential vulnerabilities identified in some AMD Graphics Drivers, which might allow denial of service, loss of confidentiality, loss of integrity, or loss of availability. AMD is releasing AMD Graphics Driver for Windows to mitigate these vulnerabilities. AMD has released...
AMD Ryzen Master Monitoring SDK November 2024 Security Update
AMD has informed HP of a potential vulnerability identified in the AMD Ryzen™ Master Monitoring SDK, which might allow arbitrary code execution. AMD has released software updates to mitigate the potential vulnerability. AMD has released updates to mitigate the potential vulnerability. HP has...
Intel PROSet/Wireless WiFi November 2024 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® PROSet/Wireless WiFi products, which might allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the...
Intel Virtual RAID on CPU (VROC) Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Virtual RAID on CPU Intel® VROC software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential...
Clariti Manager – Privilege Escalation Through Sudo
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware flaw does not properly implement access controls. The recommendation is to update an impacted device to firmware build 10.12.0.2100 or later. Customers will receive the latest build...
AMD CPU OP Cache May 2026 Security Update
AMD has informed HP of a potential security vulnerability in some AMD Processors which might allow escalation of privilege or arbitrary code execution. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential vulnerability. HP has...
Samsung Print Service Plugin – Potential Information Disclosure
Samsung Print Service Plugin for Android is potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities. Update your application...
Intel Ethernet Adapters 800 Series February 2026 Security Update
Intel has informed HP of potential security vulnerabilities in the firmware for some Intel® Ethernet Adapters 800 Series Controllers and associated adapters, which might allow denial of service. Intel has released firmware updates to mitigate these potential vulnerabilities. Intel has released...
NVIDIA GPU Display Driver January 2026 Security Update
NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows, which might allow code execution, escalation of privileges, data tampering, denial of service, and information disclosure. NVIDIA has released updates to mitigate these...
AMD Processors February 2026 Security Update
AMD has informed HP of potential vulnerabilities in certain AMD Athlon™, AMD Ryzen™, and AMD Ryzen™ Embedded Processors, which might allow escalation of privilege, arbitrary code execution, kernel memory corruption, denial of service, loss of confidentiality, loss of integrity, loss of...
Certain HP LaserJet and OfficeJet Pro Printers – Potential Information Disclosure
Certain HP LaserJet and OfficeJet Pro printers may be vulnerable to information disclosure leading to credential exposure by altering the scan/send destination address and/or modifying the LDAP Server. Update your printer firmware...
Intel Graphics Software November 2025 Security Update
Intel has informed HP of potential security vulnerabilities for some Intel® Graphics software, which might allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...
HP Card Readers (B Models) – Potential Information Disclosure
The following HP Card Readers B Models X3D03B & Y7C05B are potentially vulnerable to information disclosure, allowing prior user identity to be inherited under certain conditions —e.g., when an NFC device such as a smartphone/smartwatches is in proximity during a card swipe event. HP has determin...
AMD Embedded Processors Security Update
AMD has informed HP of potential vulnerabilities in some AMD Embedded Processors and AMD Chipset Driver for the embedded processors, which might allow arbitrary code execution, denial of service, loss of integrity, loss of availability, or loss of confidentiality. AMD has released firmware and...
Intel Processor Stream Cache August 2025 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Processor stream cache mechanisms, which might allow escalation of privilege. Intel is releasing microcode updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerabilit...
Infineon TPM Reference Implementation Out-of-Bounds Read
Infineon has informed HP of a potential security vulnerability in reference code for TPM models used in certain HP PC products, which might allow information disclosure or denial of service of the TPM. Infineon is releasing firmware updates to mitigate the vulnerability. HP has identified affecte...
Intel 2024.4 IPU - Processor February 2025 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Processors, which might allow denial of service. Intel is releasing microcode updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has identified affected...
Intel Extreme Tuning Utility (XTU) February 2025 Security Update
Intel has informed HP of a potential security vulnerability in the Intel® Extreme Tuning Utility Intel® XTU software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential...
Intel Graphics Software November 2024 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® Graphics software which might allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...