Vulnerability Description
Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book.
CVSS Score
5.3
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | W1A75A Firmware | < 002.2508a |
| Hp | W1A75A | - |
| Hp | W1A76A Firmware | < 002.2508a |
| Hp | W1A76A | - |
| Hp | W1A77A Firmware | < 002.2508a |
| Hp | W1A77A | - |
| Hp | W1A81A Firmware | < 002.2508a |
| Hp | W1A81A | - |
| Hp | W1A82A Firmware | < 002.2508a |
| Hp | W1A82A | - |
| Hp | W1A79A Firmware | < 002.2508a |
| Hp | W1A79A | - |
| Hp | W1A80A Firmware | < 002.2508a |
| Hp | W1A80A | - |
| Hp | W1A78A Firmware | < 002.2508a |
| Hp | W1A78A | - |
| Hp | W1A29A Firmware | < 002.2508a |
| Hp | W1A29A | - |
| Hp | W1A32A Firmware | < 002.2508a |
| Hp | W1A32A | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-43018?
CVE-2025-43018 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book.
How severe is CVE-2025-43018?
CVE-2025-43018 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-43018?
Check the references section above for vendor advisories and patch information. Affected products include: Hp W1A75A Firmware, Hp W1A75A, Hp W1A76A Firmware, Hp W1A76A, Hp W1A77A Firmware.