{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-2832", "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "state": "PUBLISHED", "assignerShortName": "hp", "dateReserved": "2026-02-19T20:59:41.408Z", "datePublished": "2026-02-20T17:21:02.566Z", "dateUpdated": "2026-02-20T18:48:53.729Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Samsung MultiXpress SL-X7600LXR, SL-X7500LXR, SL-X7400LXR", "vendor": "HP Inc", "versions": [{"lessThan": "<V6.D6.00.0801482.04", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Samsung MultiXpress SL-K7400LXR, SL-K7500LXR, SL-K7600LXR", "vendor": "HP Inc", "versions": [{"lessThan": "<V5.D6.00.0801482.02", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "SL-X4225RX, SL-X4255LX, SL-X4305LX", "vendor": "HP Inc", "versions": [{"lessThan": "<V6.33.07.00.0801481.01", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "SL-K4255RX, SL-K4305LX, SL-K4355LX", "vendor": "HP Inc", "versions": [{"lessThan": "<V5.33.07.00.0801481.01", "status": "affected", "version": "0", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">Certain Samsung MultiXpress Multifunction Printers may be vulnerable to information disclosure, potentially exposing address book entries and other device configuration information through specific APIs without proper authorization.</span>"}], "value": "Certain Samsung MultiXpress Multifunction Printers may be vulnerable to information disclosure, potentially exposing address book entries and other device configuration information through specific APIs without proper authorization."}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "ADJACENT", "baseScore": 5.3, "baseSeverity": "MEDIUM", "exploitMaturity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-200", "description": "CWE-200", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "shortName": "hp", "dateUpdated": "2026-02-20T17:21:02.566Z"}, "references": [{"url": "https://support.hp.com/us-en/document/ish_14108019-14108039-16/hpsbpi04094"}], "source": {"discovery": "UNKNOWN"}, "title": "Certain Samsung MultiXpress Multifunction Printers Firmware \u2013 Potential Information Disclosure", "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-20T18:48:25.928301Z", "id": "CVE-2026-2832", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-20T18:48:53.729Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-2832", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-20T18:48:25.928301Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-20T18:48:38.588Z"}}], "cna": {"title": "Certain Samsung MultiXpress Multifunction Printers Firmware \u2013 Potential Information Disclosure", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 5.3, "Automatable": "NOT_DEFINED", "attackVector": "ADJACENT", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "HP Inc", "product": "Samsung MultiXpress SL-X7600LXR, SL-X7500LXR, SL-X7400LXR", "versions": [{"status": "affected", "version": "0", "lessThan": "<V6.D6.00.0801482.04", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "HP Inc", "product": "Samsung MultiXpress SL-K7400LXR, SL-K7500LXR, SL-K7600LXR", "versions": [{"status": "affected", "version": "0", "lessThan": "<V5.D6.00.0801482.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "HP Inc", "product": "SL-X4225RX, SL-X4255LX, SL-X4305LX", "versions": [{"status": "affected", "version": "0", "lessThan": "<V6.33.07.00.0801481.01", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "HP Inc", "product": "SL-K4255RX, SL-K4305LX, SL-K4355LX", "versions": [{"status": "affected", "version": "0", "lessThan": "<V5.33.07.00.0801481.01", "versionType": "custom"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://support.hp.com/us-en/document/ish_14108019-14108039-16/hpsbpi04094"}], "x_generator": {"engine": "Vulnogram 0.5.0"}, "descriptions": [{"lang": "en", "value": "Certain Samsung MultiXpress Multifunction Printers may be vulnerable to information disclosure, potentially exposing address book entries and other device configuration information through specific APIs without proper authorization.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">Certain Samsung MultiXpress Multifunction Printers may be vulnerable to information disclosure, potentially exposing address book entries and other device configuration information through specific APIs without proper authorization.</span>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-200", "description": "CWE-200"}]}], "providerMetadata": {"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "shortName": "hp", "dateUpdated": "2026-02-20T17:21:02.566Z"}}}, "cveMetadata": {"cveId": "CVE-2026-2832", "state": "PUBLISHED", "dateUpdated": "2026-02-20T18:48:53.729Z", "dateReserved": "2026-02-19T20:59:41.408Z", "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "datePublished": "2026-02-20T17:21:02.566Z", "assignerShortName": "hp"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Certain Samsung MultiXpress Multifunction Printers may be vulnerable to information disclosure, potentially exposing address book entries and other device configuration information through specific APIs without proper authorization."}, {"lang": "es", "value": "Ciertas impresoras multifunci\u00f3n Samsung MultiXpress podr\u00edan ser vulnerables a la revelaci\u00f3n de informaci\u00f3n, exponiendo potencialmente entradas de la libreta de direcciones y otra informaci\u00f3n de configuraci\u00f3n del dispositivo a trav\u00e9s de APIs espec\u00edficas sin la debida autorizaci\u00f3n."}], "id": "CVE-2026-2832", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "ADJACENT", "availabilityRequirement": "NOT_DEFINED", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "hp-security-alert@hp.com", "type": "Secondary"}]}, "published": "2026-02-20T18:25:53.497", "references": [{"source": "hp-security-alert@hp.com", "url": "https://support.hp.com/us-en/document/ish_14108019-14108039-16/hpsbpi04094"}], "sourceIdentifier": "hp-security-alert@hp.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "hp-security-alert@hp.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V5.33.07.00.0801481.01)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "inferred", "scores": [{"score": 100.0, "source": "inferred"}]}, "product": "sl-k4255rx", "vendor": "hp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V5.33.07.00.0801481.01)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "inferred", "scores": [{"score": 100.0, "source": "inferred"}]}, "product": "sl-k4305lx", "vendor": "hp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V5.33.07.00.0801481.01)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "inferred", "scores": [{"score": 100.0, "source": "inferred"}]}, "product": "sl-k4355lx", "vendor": "hp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V6.33.07.00.0801481.01)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "inferred", "scores": [{"score": 100.0, "source": "inferred"}]}, "product": "sl-x4225rx", "vendor": "hp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V6.33.07.00.0801481.01)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "inferred", "scores": [{"score": 100.0, "source": "inferred"}]}, "product": "sl-x4255lx", "vendor": "hp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V6.33.07.00.0801481.01)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "inferred", "scores": [{"score": 100.0, "source": "inferred"}]}, "product": "sl-x4305lx", "vendor": "hp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V5.D6.00.0801482.02)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Samsung MultiXpress SL-K7400LXR, SL-K7500LXR, SL-K7600LXR", "source": "cna", "vendor": "HP Inc"}, "product": "multixpress_sl-k7400lxr", "vendor": "samsung"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V5.D6.00.0801482.02)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Samsung MultiXpress SL-K7400LXR, SL-K7500LXR, SL-K7600LXR", "source": "cna", "vendor": "HP Inc"}, "product": "multixpress_sl-k7500lxr", "vendor": "samsung"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V5.D6.00.0801482.02)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Samsung MultiXpress SL-K7400LXR, SL-K7500LXR, SL-K7600LXR", "source": "cna", "vendor": "HP Inc"}, "product": "multixpress_sl-k7600lxr", "vendor": "samsung"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V6.D6.00.0801482.04)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Samsung MultiXpress SL-X7600LXR, SL-X7500LXR, SL-X7400LXR", "source": "cna", "vendor": "HP Inc"}, "product": "multixpress_sl-x7400lxr", "vendor": "samsung"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V6.D6.00.0801482.04)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Samsung MultiXpress SL-X7600LXR, SL-X7500LXR, SL-X7400LXR", "source": "cna", "vendor": "HP Inc"}, "product": "multixpress_sl-x7500lxr", "vendor": "samsung"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,V6.D6.00.0801482.04)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Samsung MultiXpress SL-X7600LXR, SL-X7500LXR, SL-X7400LXR", "source": "cna", "vendor": "HP Inc"}, "product": "multixpress_sl-x7600lxr", "vendor": "samsung"}], "analysis": {"en": {"generated_at": "2026-04-17T17:14:50.113194+00:00", "value": {"mitigation_remediation": ["Consult HP\u2019s support documentation to obtain the latest firmware version that addresses the information disclosure issue.", "Install the updated firmware on all affected Samsung MultiXpress printers.", "Limit or disable the exposed APIs by configuring the printer\u2019s management interface or applying network access controls, such as firewall rules or VLAN segmentation, to restrict who can reach those endpoints."], "summary": {"action": "Apply Update", "impact": "Information Disclosure"}, "threat_synthesis": {"affected_systems": "HP Inc. Samsung MultiXpress series, including models SL-K4255RX, SL-K4305LX, SL-K4355LX, SL-X4225RX, SL-X4255LX, SL-X4305LX, SL-K7400LXR, SL-K7500LXR, SL-K7600LXR, SL-X7600LXR, SL-X7500LXR, and SL-X7400LXR are affected.", "description_and_impact": "Certain Samsung MultiXpress Multifunction Printers may allow the disclosure of sensitive information, including address book entries and device configuration, when accessed through particular APIs without the necessary authorization. The vulnerability arises from insufficient access control on these interfaces, enabling an attacker to retrieve confidential data.", "risk_and_exploitability": "The CVSS score of 5.3 indicates medium severity, and an EPSS score of less than 1% suggests a very low likelihood of exploitation in the wild. The vulnerability is not currently listed in CISA\u2019s KEV catalog. While the description does not detail an active exploit, the likely attack vector involves an attacker sending crafted requests to the vulnerable APIs over the network, potentially requiring some degree of network proximity or administrative network access. Because the flaw stems from missing authorization checks, the risk emphasizes confidentiality rather than integrity or availability."}}}}, "created": "2026-02-23T14:35:22.513681+00:00", "updated": "2026-04-17T17:15:23.728338+00:00", "vendors": ["hp", "hp$PRODUCT$sl-k4255rx", "hp$PRODUCT$sl-k4305lx", "hp$PRODUCT$sl-k4355lx", "hp$PRODUCT$sl-x4225rx", "hp$PRODUCT$sl-x4255lx", "hp$PRODUCT$sl-x4305lx", "samsung", "samsung$PRODUCT$multixpress_sl-k7400lxr", "samsung$PRODUCT$multixpress_sl-k7500lxr", "samsung$PRODUCT$multixpress_sl-k7600lxr", "samsung$PRODUCT$multixpress_sl-x7400lxr", "samsung$PRODUCT$multixpress_sl-x7500lxr", "samsung$PRODUCT$multixpress_sl-x7600lxr"]}