HP Update
5594Warning Date
Severity Level
Warning Number
Target Sector
23 January, 2020
● High
2020-838
All
Description:
HP has released security updates to address a vulnerability in the following products:
- HP LaserJet Enterprise MFP M527 series
- F2A76A, F2A77A, F2A78A, F2A81A
- HP LaserJet Managed MFP M527 series
- F2A79A, F2A80A
- HP Color LaserJet Enterprise MFP M577 series
- B5L46A, B5L47A, B5L48A, B5L54A
- HP Color LaserJet Managed MFP M577 series
- B5L49A, B5L50A
- HP LaserJet Enterprise MFP M631, M632, M633 series
- J8J63A, J8J64A, J8J65A, J8J70A, J8J71A, J8J72A, J8J76A, J8J78A
- HP Color LaserJet Enterprise MFP M681, M682 series
- J8A10A, J8A11A, J8A12A, J8A13A, J8A17A
- HP Color LaserJet Enterprise Flow MFP M776 series
- T3U56A, 3WT91A
- HP Color LaserJet Enterprise MFP M776 series
- T3U55A
- HP LaserJet Managed MFPE52545 series
- 3GY19A, 3GY20A
- HP Color LaserJet Managed MFP E57540 series
- 3GY25A, 3GY26A
- HP LaserJet Managed MFP E62555/65/75 series
- J8J66A, J8J73A, J8J74A, J8J79A, J8J80A
- HP Color LaserJet Managed MFP E67550/60 series
- L3U66A, L3U70A
- HP LaserJet Managed MFP E72525/30/35 series
- X3A59A, X3A60A, X3A62A, X3A63A, X3A65A, X3A66A, X3A67A, X3A70A, Z8Z06A, Z8Z07A, Z8Z08A, Z8Z09A, Z8Z10A, Z8Z11A
- HP Color LaserJet Managed MFP E77822/25/30 series
- X3A61A, X3A64A, X3A77A, X3A78A, X3A80A, X3A81A, X3A83A, X3A84A, Z8Z00A, Z8Z01A, Z8Z02A, Z8Z03A, Z8Z04A, Z8Z05A
- HP LaserJet Managed MFP E82540/50/60 series
- 5CM59A, 5RC83A, 5CM58A, 5CM60A, 5RC84A, 5CM61A, 5RC85A, 5FM77A, 5FM78A
- HP Color LaserJet Managed MFP E87640/50/60 series
- 5CM63A, 5CM64A, 5CM65A, 5CM66A, 5RC87A, 5FM80A, 5FM81A, 5FM82A
- HP PageWide Enterprise Color MFP 780, 785 series
- J7Z09A, J7Z10A, J7Z11A, J7Z12A, Z5G75A
- HP PageWide Enterprise Color MFP 586 series
- G1W39A, G1W40A, G1W41A
- HP PageWide Managed Color MFP E58650 series
- L3U42A, L3U43A
- HP PageWide Managed Color MFP E77650/60 series
- J7Z03A, J7Z07A, J7Z08A, J7Z13A, J7Z14A, Z5G76A, Z5G77A, Z5G78A, Z5G79A
Threats:
Attacker could exploit this vulnerability by doing the following:
- Escalation of privilege
Best practice and Recommendations:
The CERT team encourages users to review HP security advisory and apply the necessary updates:
https://support.hp.com/us-en/document/c06543432