Primary

Context

HP LaserJet Pro Printers Information Disclosure Vulnerability

Vulnerability

Patched

A vulnerability exists in certain HP LaserJet Pro printers, allowing for information disclosure that could lead to credential exposure. This issue arises from the ability to alter the scan/send destination address or modify the LDAP server settings.

Impact

Exploitation of this vulnerability could result in unauthorized information disclosure, specifically credentials, from the affected printer.

Remediation

Users are advised to update their printer firmware. HP has provided firmware updates for potentially affected products. To obtain the updated firmware, visit the HP Software and Driver Downloads page and search for your printer model.

Added: Nov 13, 2025, 6:20 PM

Updated: Nov 13, 2025, 6:20 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

2.5

exploitability

4.4

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

2.5

exploitability

4.4

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HP LaserJet Pro Printers Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

HP LaserJet Pro MFP M429

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating