Primary

Context

HP Linux Imaging and Printing Software Weak Code Signing Key Vulnerability

Vulnerability

Patched

A potential security vulnerability exists in the HP Linux Imaging and Printing Software due to the use of a weak code signing key with the Digital Signature Algorithm (DSA). This vulnerability is documented in the HP Security Bulletin HPSBPI04033.

Impact

The vulnerability could allow for code signing verification to be bypassed, potentially leading to the acceptance of maliciously signed code.

Remediation

Users can update to HP Linux Imaging and Printing version 3.25.2. This version is available for download from the HP Linux Imaging and Printing website.

Added: Jul 28, 2025, 6:30 PM

Updated: Jul 28, 2025, 6:30 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

10.0

exploitability

4.7

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

10.0

exploitability

4.7

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HP Linux Imaging and Printing Software Weak Code Signing Key Vulnerability

Vulnerability

Impact

Remediation

Affected Products

HP Linux Imaging and Printing

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating