CVE-2022-24292

Q: What is the severity of CVE-2022-24292?

CVE-2022-24292 has a CVSS score of 9.8 (CRITICAL). This critical vulnerability in certain HP Print devices allows attackers to potentially execute arbitrary code remotely, leading to information disclosure or denial of service. Affected organizations using vulnerable HP printer models are at risk, particularly those with internet-facing devices.

9.8 CRITICAL

Remote Code Execution

📋 TL;DR

This critical vulnerability in certain HP Print devices allows attackers to potentially execute arbitrary code remotely, leading to information disclosure or denial of service. Affected organizations using vulnerable HP printer models are at risk, particularly those with internet-facing devices.

💻 Affected Systems

Products:

HP LaserJet Pro
HP LaserJet Enterprise
HP PageWide
HP OfficeJet Pro

Versions: Firmware versions prior to 2022.04.01

Operating Systems: Embedded printer firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Specific models listed in HP advisory; requires network access to printer management interface.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, lateral movement to internal networks, and persistent access to sensitive data.

🟠

Likely Case

Denial of service attacks disrupting printing services and potential information disclosure from device logs or configurations.

🟢

If Mitigated

Limited impact with proper network segmentation and access controls, potentially only affecting printing functionality.

🌐 Internet-Facing: HIGH - Printers directly accessible from the internet are extremely vulnerable to remote exploitation.

🏢 Internal Only: MEDIUM - Internal attackers or compromised internal systems could exploit this vulnerability.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Based on CVSS 9.8 score, exploitation likely requires minimal technical skill once details are public.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firmware 2022.04.01 or later

Vendor Advisory: https://support.hp.com/us-en/document/ish_5950417-5950443-16

Restart Required: Yes

Instructions:

1. Download latest firmware from HP support site. 2. Access printer web interface. 3. Navigate to firmware update section. 4. Upload and install new firmware. 5. Reboot printer after installation.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate printers on separate VLAN with restricted access

Access Control Lists

linux

Implement firewall rules to restrict printer management interface access

iptables -A INPUT -p tcp --dport 80 -s trusted_network -j ACCEPT
iptables -A INPUT -p tcp --dport 443 -s trusted_network -j ACCEPT
iptables -A INPUT -p tcp --dport 80 -j DROP
iptables -A INPUT -p tcp --dport 443 -j DROP

🧯 If You Can't Patch

Disable remote management features and web interface if not required
Implement strict network access controls to limit printer exposure

🔍 How to Verify

Check if Vulnerable:

Check firmware version in printer web interface under System Information or Configuration pages

Check Version:

curl -s http://printer-ip/hp/device/info_configuration.html | grep Firmware

Verify Fix Applied:

Confirm firmware version is 2022.04.01 or later in printer management interface

📡 Detection & Monitoring

Log Indicators:

Unusual authentication attempts to printer web interface
Multiple failed firmware update attempts
Unexpected configuration changes

Network Indicators:

Unusual traffic patterns to printer management ports (80, 443, 9100)
Exploit-specific payloads in HTTP requests to printer

SIEM Query:

source="printer_logs" AND (event="authentication_failure" OR event="firmware_update")

📊 Metadata

CVE ID: CVE-2022-24292

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Published: March 23, 2022

Last Updated: November 21, 2024

🔗 References

https://support.hp.com/us-en/document/ish_5950417-5950443-16 Vendor Advisory
https://support.hp.com/us-en/document/ish_5950417-5950443-16 Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Laserjet Pro M304 M305 W1a46a Firmware by Hp

Laserjet Pro M304 M305 W1a47a Firmware by Hp

Laserjet Pro M304 M305 W1a47a Firmware by Hp

Laserjet Pro M304 M305 W1a48a Firmware by Hp

Laserjet Pro M304 M305 W1a51a Firmware by Hp

Laserjet Pro M304 M305 W1a52a Firmware by Hp

Laserjet Pro M304 M305 W1a53a Firmware by Hp

Laserjet Pro M304 M305 W1a56a Firmware by Hp

Laserjet Pro M304 M305 W1a57a Firmware by Hp

Laserjet Pro M304 M305 W1a58a Firmware by Hp

Laserjet Pro M304 M305 W1a59a Firmware by Hp

Laserjet Pro M304 M305 W1a60a Firmware by Hp

Laserjet Pro M304 M305 W1a63a Firmware by Hp

Laserjet Pro M304 M305 W1a66a Firmware by Hp

Laserjet Pro M404 M405 93m22a Firmware by Hp

Laserjet Pro M453 M454 W1y40a Firmware by Hp

Laserjet Pro M453 M454 W1y41a Firmware by Hp

Laserjet Pro M453 M454 W1y43a Firmware by Hp

Laserjet Pro M453 M454 W1y44a Firmware by Hp

Laserjet Pro M453 M454 W1y45a Firmware by Hp

Laserjet Pro M453 M454 W1y46a Firmware by Hp

Laserjet Pro M453 M454 W1y47a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a29a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a30a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a32a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a34a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a35a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a38a Firmware by Hp

Laserjet Pro Mfp M428 M429 W1a28a Firmware by Hp

Laserjet Pro Mfp M428 M429 W1a31a Firmware by Hp

Laserjet Pro Mfp M428 M429 W1a33a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a75a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a76a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a77a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a78a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a79a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a80a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a81a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a82a Firmware by Hp

Officejet Pro 8210 D9l63a Firmware by Hp

Officejet Pro 8210 D9l64a Firmware by Hp

Officejet Pro 8210 J3p65a Firmware by Hp

Officejet Pro 8210 J3p66a Firmware by Hp

Officejet Pro 8210 J3p67a Firmware by Hp

Officejet Pro 8210 J3p68a Firmware by Hp

Officejet Pro 8216 T0g70a Firmware by Hp

Officejet Pro 8730 D9l20a Firmware by Hp

Officejet Pro 8730 K7s32a Firmware by Hp

Officejet Pro 8740 D9l21a Firmware by Hp

Officejet Pro 8740 J6x83a Firmware by Hp

Officejet Pro 8740 K7s39a Firmware by Hp

Officejet Pro 8740 K7s40a Firmware by Hp

Officejet Pro 8740 K7s41a Firmware by Hp

Officejet Pro 8740 K7s42a Firmware by Hp

Officejet Pro 8740 K7s43a Firmware by Hp

Officejet Pro 8740 T0g65a Firmware by Hp

Pagewide 352dw J6u57a Firmware by Hp

Pagewide 377dw J9v80a Firmware by Hp

Pagewide Managed P55250dw J6u51b Firmware by Hp

Pagewide Managed P55250dw J6u55a Firmware by Hp

Pagewide Managed P55250dw J6u55b Firmware by Hp

Pagewide Managed P57750dw J9v82a Firmware by Hp

Pagewide Pro 452dn D3q15a Firmware by Hp

Pagewide Pro 452dw D3q16a Firmware by Hp

Pagewide Pro 477dn D3q19a Firmware by Hp

Pagewide Pro 477dw D3q20a Firmware by Hp

Pagewide Pro 552dw D3q17a Firmware by Hp

Pagewide Pro 577dw D3q21a Firmware by Hp

Pagewide Pro 577z K9z76a Firmware by Hp