Last year, the company published security recommendations for three vulnerabilities that could lead to remote code execution on compromised machines. This is not the first time HP printers have been exposed to security vulnerabilities. As for IPsec (Internet Protocol Security), it is a set of IP network security protocols designed to prevent attackers from remotely accessing corporate networks. There is no known case of exploitation of vulnerability in the wild.įutureSmart is HP proprietary firmware that runs on the company’s most powerful enterprise-class printers and helps system administrators manage and maintain various functions in the company’s fleet of corporate printers. The company also explained that affected devices could theoretically scan job data sent from the printer.
In a statement to Bleeping Computer, HP said that the period of exposure to the vulnerability was between mid-February and the end of March 2023 and affected only selected models running FutureSmart version 5. A full list of affected printers can be found on the HP support page.
This involves switching to the previous firmware version (FutureSmart version 5.5.0.3) until the fix is deployed. Until a security fix is released, HP is offering a temporary workaround for vulnerable devices.
0 kommentar(er)
