Certain%20HP%20LaserJet%20Pro%20Printers

Certain HP LaserJet Pro Printers

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

3Vulnerabilities found

CVE-2025-43018

Assigner-HP Inc.

View Details

Assigner-HP Inc.

CVSS Score-6.9||MEDIUM

EPSS-0.03% / 8.61%

7 Day CHG-0.03%

Published-30 Jul, 2025 | 14:31

Updated-24 Feb, 2026 | 14:37

Certain HP LaserJet Pro Printers – Potential Information Disclosure

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book.

Vendor-HP Inc.

CWE ID-CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CVE-2025-1004

Assigner-HP Inc.

View Details

Assigner-HP Inc.

CVSS Score-6.9||MEDIUM

EPSS-0.17% / 37.84%

7 Day CHG+0.02%

Published-06 Feb, 2025 | 21:02

Updated-24 Feb, 2026 | 14:39

Certain HP LaserJet Pro Printers – Potential Denial of Service

Certain HP LaserJet Pro printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer via IPP (Internet Printing Protocol).

Vendor-HP Inc.

CWE ID-CWE-241

Improper Handling of Unexpected Data Type

CVE-2024-5143

Assigner-HP Inc.

View Details

Assigner-HP Inc.

CVSS Score-6.8||MEDIUM

EPSS-0.15% / 36.15%

7 Day CHG~0.00%

Published-23 May, 2024 | 16:58

Updated-26 Jan, 2026 | 13:53

A user with device administrative privileges can change existing SMTP server settings on the device, without having to re-enter SMTP server credentials. By redirecting send-to-email traffic to the new server, the original SMTP server credentials may potentially be exposed.

Vendor-HP Inc.

Product-w1a77a_firmware w1a80a w1a76a_firmware w1a76a w1a75a_firmware w1a77a w1a80a_firmware w1a79a_firmware w1a81a w1a79a w1a78a w1a81a_firmware w1a82a w1a78a_firmware w1a75a w1a82a_firmware Certain HP LaserJet Pro Printers

CWE ID-CWE-306

Missing Authentication for Critical Function