Hundreds Of HP Printer models Vulnerable To 3 Critical Flaws

HP has issued warnings on three critical-severity flaws affecting hundreds of the company’s printer models.

The models include LaserJet Pro, Pagewide Pro, OfficeJet, Enterprise, Large Format, and DeskJet.

The three flaws include two critical and one high-severity vulnerability. The three flaws could be exploited for information disclosure, remote code execution, and denial of service.

The three vulnerabilities are tracked as CVE-2022-24291, a high severity flaw that comes with a CVSS score of 7.5, CVE-2022-24292, a critical severity flaw with a CVSS score of 9.8, and CVE-2022-24293, a critical severity flaw with a 9.8 CVSS rating.

Admins are advised to update their printer firmware to the designated versions. However, this is flawed since it isn’t available for all impacted models.

While there is no mitigation for one of the listed LaserJet Pro models, other models admins can mitigate the issue by installing the latest available firmware version on HP’s official software portal.

IT World Canada Staff
IT World Canada Staff
The online resource for Canadian Information Technology professionals.

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

ITW in your inbox

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

More Best of The Web