Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

Certain HP LaserJet Pro Printers

Source -

CNA

CNA CVEs -

3

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
3Vulnerabilities found
CVE-2025-43018
Assigner-HP Inc.
ShareView Details
Assigner-HP Inc.
CVSS Score-6.9||MEDIUM
EPSS-0.06% / 17.22%
||
7 Day CHG~0.00%
Published-30 Jul, 2025 | 14:31
Updated-31 Jul, 2025 | 18:42
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Certain HP LaserJet Pro Printers – Potential Information Disclosure

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book.

Action-Not Available
Vendor-HP Inc.
Product-Certain HP LaserJet Pro Printers
CWE ID-CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CVE-2025-1004
Assigner-HP Inc.
ShareView Details
Assigner-HP Inc.
CVSS Score-6.9||MEDIUM
EPSS-0.13% / 33.89%
||
7 Day CHG~0.00%
Published-06 Feb, 2025 | 21:02
Updated-12 Feb, 2025 | 19:41
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Certain HP LaserJet Pro Printers – Potential Denial of Service

Certain HP LaserJet Pro printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer via IPP (Internet Printing Protocol).

Action-Not Available
Vendor-HP Inc.
Product-Certain HP LaserJet Pro Printers
CWE ID-CWE-241
Improper Handling of Unexpected Data Type
CVE-2024-5143
Assigner-HP Inc.
ShareView Details
Assigner-HP Inc.
CVSS Score-6.8||MEDIUM
EPSS-0.07% / 21.68%
||
7 Day CHG~0.00%
Published-23 May, 2024 | 16:58
Updated-31 Oct, 2024 | 15:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A user with device administrative privileges can change existing SMTP server settings on the device, without having to re-enter SMTP server credentials. By redirecting send-to-email traffic to the new server, the original SMTP server credentials may potentially be exposed.

Action-Not Available
Vendor-HP Inc.
Product-Certain HP LaserJet Pro Printers
CWE ID-CWE-306
Missing Authentication for Critical Function