Security Flaw in HP Linux Imaging and Printing Software Due to Weak Code Signing
CVE-2025-43023

5.9MEDIUM

Key Information:

Vendor: HP, Inc.
Status: HP Linux Imaging And Printing Software
Vendor: CVE Published:; 28 July 2025

What is CVE-2025-43023?

A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software, stemming from the use of a weak Digital Signature Algorithm (DSA) key for code signing. This flaw could potentially allow unauthorized access and manipulation of software components, posing a risk to the integrity and security of the system. Users of this software should be aware of this issue and take appropriate measures to mitigate risks.

Affected Version(s)

HP Linux Imaging and Printing Software See HP security bulletin reference for affected versions

References

https://support.hp.com/us-en/document/ish_12804224-128042...

CVSS V4

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 28, 2025
Vulnerability Reserved
Apr 16, 2025

HP, Inc.

What is CVE-2025-43023?

Affected Version(s)

References

CVSS V4

Timeline