Denial of Service Vulnerability in HP LaserJet Pro Printers
CVE-2025-1004

6.9MEDIUM

Key Information:

Vendor: HP
Status: Certain HP Laserjet Pro Printers
Vendor: CVE Published:; 6 February 2025

What is CVE-2025-1004?

Certain HP LaserJet Pro printers are prone to a potential denial of service when a user sends a raw JPEG file through the Internet Printing Protocol (IPP). This issue can lead to interruptions in printer availability, affecting users' ability to print documents. Care should be taken to mitigate risks associated with the transmission of unverified file types to ensure continuous operation.

Affected Version(s)

Certain HP LaserJet Pro Printers See HP Security Bulletin reference for affected versions.

References

https://support.hp.com/au-en/document/ish_11927586-119276...

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 6, 2025
Vulnerability Reserved
Feb 3, 2025