CVE-2025-26507

Name: CVE-2025-26507
Creator: NVD / NIST
Published: 2025-02-14T17:15:22.863+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 6.3/10EPSS 0.86%

Last modified Jun 17, 2026

CVE-2025-26507 is a medium-severity vulnerability rated 6.3/10 on the CVSS scale. Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially be vulnerable to Remote Code Execution and Elevation of Privilege when processing a PostScript print job.. EPSS estimates a 0.86% chance of exploitation in the next 30 days.

Description

Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially be vulnerable to Remote Code Execution and Elevation of Privilege when processing a PostScript print job.

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS 4.0

6.3/10

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

EPSS Probability

0.86%

54.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-121

Affected Software

Vendor	Product	Versions
Hp	Futuresmart 3	< 2309118_002276
Hp	Futuresmart 3	< 2309118_002274
Hp	Futuresmart 5	< 2508402_000067
Hp	Futuresmart 3	< 2309118_002275
Hp	Futuresmart 5	< 2508402_000106
Hp	Futuresmart 4	< 2411278_068111
Hp	Futuresmart 4	< 2411278_068112
Hp	Futuresmart 4	< 2411278_068114
Hp	Futuresmart 4	< 2411278_068113
Hp	Futuresmart 5	< 2508402_000090
Hp	Futuresmart 5	< 2508125_000009
Hp	Futuresmart 5	< 2508402_000058
Hp	Futuresmart 5	< 2508402_000098
Hp	Futuresmart 5	< 2508402_000072
Hp	Futuresmart 5	< 2508402_000117
Hp	Futuresmart 5	< 2508402_000116
Hp	Futuresmart 5	< 2508402_000089
Hp	Futuresmart 5	< 2508402_000053
Hp	Futuresmart 5	< 2508402_000081
Hp	Futuresmart 5	< 2508125_000003
Hp	Futuresmart 5	< 2508402_000103
Hp	Futuresmart 5	< 2508402_000087
Hp	Futuresmart 5	< 2508402_000075
Hp	Futuresmart 5	< 2508125_000006
Hp	Futuresmart 5	< 2508402_000123
Hp	Futuresmart 5	< 2508402_000111
Hp	Futuresmart 5	< 2508402_000172
Hp	Futuresmart 5	< 2508402_000097
Hp	Futuresmart 5	< 2508402_000063
Hp	Futuresmart 5	< 2508402_000082
Hp	Futuresmart 5	< 2508402_000056
Hp	Futuresmart 5	< 2508402_000084
Hp	Futuresmart 5	< 2508125_000007
Hp	Futuresmart 5	< 2508402_000096
Hp	Futuresmart 5	< 2508125_000002
Hp	Futuresmart 5	< 2508125_000004
Hp	Futuresmart 5	< 2508402_000114
Hp	Futuresmart 5	< 2508402_000071
Hp	Futuresmart 5	< 2508402_000119
Hp	Futuresmart 5	< 2508125_000001
Hp	Futuresmart 5	< 2508125_000011
Hp	Futuresmart 5	< 2508125_000012
Hp	Futuresmart 5	< 2508125_000010
Hp	Futuresmart 5	< 2508402_000068
Hp	Futuresmart 5	< 2508402_000064
Hp	Futuresmart 5	< 2508402_000057
Hp	Futuresmart 5	< 2508402_000088
Hp	Futuresmart 5	< 2508402_000073
Hp	Futuresmart 5	< 2508402_000122
Hp	Futuresmart 5	< 2508402_000055

Showing 50 of 52 affected configurations. See NVD for the full list.

References

https://support.hp.com/us-en/document/ish_11953771-11953793-16/hpsbpi04007Vendor Advisory

Timeline

Published: Feb 14, 2025
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2025-26507?

How severe is CVE-2025-26507?

CVE-2025-26507 has a CVSS score of 6.3/10 (MEDIUM severity). The EPSS model estimates a 0.86% probability of exploitation in the next 30 days.

How do I fix CVE-2025-26507?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2025-26507?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST