CVE-2025-3508 MEDIUM

CVE-2025-3508: Certain HP DesignJet products – Information disclosure

Vendor Hp Inc.
Product Certain HP DesignJet products
Weakness CWE-200 · Info exposure
Published July 25, 2025
Last update July 25, 2025

CVSS base score

6.0/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information.

Key dates

02Disclosure timeline

July 25, 2025 CVE published
July 25, 2025 Record updated