Alert: HP security vulnerabilities
November 16, 2022
The Recycler understands that a recent firmware update to fix a security alert may also switch on auto updating.
On the 21st September HP issued a warning about two newly discovered security vulnerabilities affecting several printers. According to HP, both vulnerabilities can be exploited by hackers to penetrate user systems unnoticed.
The first security alert is “CVE-2022-28721” and is categorised as a critical threat and the second is “CVE-2022-28722” and categorised as a high threat. Both threats apply to various HP office printers for private and corporate use are affected.
HP issued new firmware to correct the problem.
Readers also report that when they installed the printer software on a new staff laptop the firmware reverted to auto update. This required a factory reset of the printer as the only way to turn off auto firmware updates.
As we wrote the story, we received another reader alert, telling us on 14.11.2022 HP issued another firmware update version 002.2242A affecting printers using the 963XL series cartridges and on 15.11.2022 the OEM issued a firmware update (00.2243A), which affects printers using 912XL series cartridges.
Have you experienced this problem? If you have let us know at news@therecycler.com.
Categories : Around the Industry
Tags : Business Firmware Update HP Remanufacturing
