CVE-2017-2750

Q: What is the severity of CVE-2017-2750?

CVE-2017-2750 has a CVSS score of 9.8 (CRITICAL). CVE-2017-2750 is a critical vulnerability in HP printer firmware that allows attackers to bypass digital signature validation and execute arbitrary code. This affects multiple HP LaserJet, PageWide, and OfficeJet Enterprise printer models. Attackers can potentially take full control of affected printers.

9.8 CRITICAL

Remote Code Execution

📋 TL;DR

CVE-2017-2750 is a critical vulnerability in HP printer firmware that allows attackers to bypass digital signature validation and execute arbitrary code. This affects multiple HP LaserJet, PageWide, and OfficeJet Enterprise printer models. Attackers can potentially take full control of affected printers.

💻 Affected Systems

Products:

HP LaserJet Enterprise printers
HP PageWide Enterprise printers
HP LaserJet Managed printers
HP OfficeJet Enterprise printers

Versions: Firmware versions before 2308937_578479 and 2405087_018548

Operating Systems: Printer firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Affects enterprise-grade HP printers with vulnerable firmware versions. Consumer models may not be affected.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of printer with persistent malware installation, data exfiltration, and use as pivot point into corporate networks.

🟠

Likely Case

Printer compromise leading to denial of service, unauthorized access to printed documents, and network reconnaissance.

🟢

If Mitigated

Limited impact with network segmentation and updated firmware preventing successful exploitation.

🌐 Internet-Facing: HIGH

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires network access to printer management interface. Public exploit details exist in security advisories.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firmware versions 2308937_578479, 2405087_018548 or later

Vendor Advisory: https://support.hp.com/us-en/document/c05839270

Restart Required: Yes

Instructions:

1. Identify printer model and current firmware version. 2. Download appropriate firmware update from HP support site. 3. Upload firmware to printer via web interface or HP tools. 4. Apply update and restart printer.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate printers on separate VLAN with restricted access

Disable Remote Management

all

Turn off unnecessary network services on printers

🧯 If You Can't Patch

Segment printers on isolated network with strict firewall rules
Disable all unnecessary services and protocols on printers

🔍 How to Verify

Check if Vulnerable:

Check printer firmware version via web interface or HP tools against vulnerable version list

Check Version:

Access printer web interface at http://[printer-ip] and check firmware version in settings

Verify Fix Applied:

Confirm firmware version is 2308937_578479, 2405087_018548 or later

📡 Detection & Monitoring

Log Indicators:

Unusual firmware update attempts
Unauthorized configuration changes
Unexpected network connections from printer

Network Indicators:

Unexpected traffic to/from printer management ports
Firmware upload attempts from unauthorized sources

SIEM Query:

source="printer_logs" AND (event="firmware_update" OR event="config_change")

📊 Metadata

CVE ID: CVE-2017-2750

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-20

Published: January 23, 2018

Last Updated: November 21, 2024

🔗 References

http://www.securityfocus.com/bid/101965 Third Party Advisory,VDB Entry
https://support.hp.com/us-en/document/c05839270 Mitigation,Vendor Advisory
http://www.securityfocus.com/bid/101965 Third Party Advisory,VDB Entry
https://support.hp.com/us-en/document/c05839270 Mitigation,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

A2w75a Firmware by Hp

A2w75a Firmware by Hp

A2w76a Firmware by Hp

A2w76a Firmware by Hp

A2w77a Firmware by Hp

A2w77a Firmware by Hp

A2w78a Firmware by Hp

A2w78a Firmware by Hp

A2w79a Firmware by Hp

A2w79a Firmware by Hp

B3g84a Firmware by Hp

B3g84a Firmware by Hp

B3g85a Firmware by Hp

B3g85a Firmware by Hp

B3g86a Firmware by Hp

B3g86a Firmware by Hp

B5l04a Firmware by Hp

B5l04a Firmware by Hp

B5l04v Firmware by Hp

B5l04v Firmware by Hp

B5l05a Firmware by Hp

B5l05a Firmware by Hp

B5l05v Firmware by Hp

B5l05v Firmware by Hp

B5l06a Firmware by Hp

B5l06a Firmware by Hp

B5l06v Firmware by Hp

B5l06v Firmware by Hp

B5l07a Firmware by Hp

B5l07a Firmware by Hp

B5l23a Firmware by Hp

B5l24a Firmware by Hp

B5l25a Firmware by Hp

B5l26a Firmware by Hp

B5l46a Firmware by Hp

B5l46a Firmware by Hp

B5l47a Firmware by Hp

B5l47a Firmware by Hp

B5l48a Firmware by Hp

B5l48a Firmware by Hp

B5l49a Firmware by Hp

B5l49a Firmware by Hp

B5l50a Firmware by Hp

B5l50a Firmware by Hp

B5l54a Firmware by Hp

B5l54a Firmware by Hp

C2s11a Firmware by Hp

C2s11v Firmware by Hp

C2s12a Firmware by Hp

C2s12v Firmware by Hp

Cc419a Firmware by Hp

Cc420a Firmware by Hp

Cc421a Firmware by Hp

Cd644a Firmware by Hp

Cd644a Firmware by Hp

Cd645a Firmware by Hp

Cd645a Firmware by Hp

Cd646a Firmware by Hp

Cd646a Firmware by Hp

Ce503a Firmware by Hp

Ce504a Firmware by Hp

Ce707a Firmware by Hp

Ce708a Firmware by Hp

Ce709a Firmware by Hp

Ce738a Firmware by Hp

Ce989a Firmware by Hp

Ce990a Firmware by Hp

Ce991a Firmware by Hp

Ce992a Firmware by Hp

Ce993a Firmware by Hp

Ce994a Firmware by Hp

Ce995a Firmware by Hp

Ce996a Firmware by Hp

Cf066a Firmware by Hp

Cf066a Firmware by Hp

Cf067a Firmware by Hp

Cf067a Firmware by Hp