Researchers from a security company found the leaks F-secure. HP she has two menus Fitted with all affected models. HP was notified by researchers in April, and the leaks will be fixed in the latest updates for the printers. Users are strongly advised to install these updates as soon as possible.

Leaks allow data to be read from the printer itself. It is also possible to access the user’s network via the printer. It is not known if the leaks were actually exploited. MFPs with their own memory are specifically mentioned: such printers can contain, for example, a digital copy of a scanned passport or other sensitive document.

Attacks are possible, but technically complex

The vulnerabilities enable two types of attacks: physical remote access to the device. However, both types of attacks are complex, according to the researchers, so a wave of cyber attacks is not expected. However, there is a risk of misuse of the leaks by a worm virus, which can spread independently between printers without the latest update.

According to F-Secure, printers from other brands may have such leaks, but the investigation was limited to HP printers.