Two nasty security vulnerabilities make hundreds of HP Inkjet printers vulnerable to remote code execution. HP recommended applying firmware update patches “as soon as possible.”
Almost immediately after announcing a “first of its kind” bug bounty program for printers, offering up to $10,000 per HP printer bug, HP released firmware update patches for hundreds of inkjet printers.
“Two security vulnerabilities have been identified with certain HP Inkjet printers,” reads the HP ink printers remote code execution security bulletin. “A maliciously crafted file sent to an affected device can cause a stack or static buffer overflow, which could allow remote code execution.”