The Samsung Universal Printer Driver for Windows is potentially vulnerable to a privilege escalation that allows the creation of a reverse shell in the utility.
The vulnerability CVE-2024-5760 was reported by Hahna Latonick, Matthew Bianchi, and Julian Daeumer and only applies to products in the application released or manufactured before 2018.
HP has released updated printer driver software packages for potentially affected products listed in the table below. Go to HP Customer Support – Software and Driver Downloads, and then search for your printer model to download the update.
The software version affected is V3.00.16.0101 and should be updated to V3.00.16.0101:01.
If you experience issues while implementing the recommendations in HP’s security bulletin, go to http://www.hp.com/go/contacthp to learn more about HP support options.
