HP Linux Driver Vulnerability Exposes Critical Execution Flaws

EXECUTIVE SUMMARY:

Multiple security vulnerabilities have been identified in the HP Linux Imaging and Printing (HPLIP) software suite, which is the default driver framework used to interface Linux operating systems with HP printers and scanners. The affected software versions include all versions of HPLIP up to the latest release. The discovered flaws introduce code execution vectors, giving threat actors the ability to compromise local workstations or pivot across production network segments. This poses a significant business risk as the exploitation of these vulnerabilities can lead to unauthorized access, data breaches, and system compromise. As a result, organizations that rely on HPLIP for printer and scanner functionality are advised to take immediate action to assess and mitigate the risks associated with these vulnerabilities.[emaillocker id="1283"]

• CVE-2026-8631 with a CVSS score of 9.3 – This vulnerability allows an unauthenticated network attacker to exploit an integer overflow flaw in the hpcups processing path, enabling the execution of arbitrary code or privilege escalation on the host machine. The attacker can achieve this by sending specially crafted print data directly to an exposed printer service.
• CVE-2026-8632 with a CVSS score of 8.5 – This vulnerability allows a local user with minimal privileges to bypass access controls and escalate their permissions to root authority through an input validation failure within the underlying operating system script wrappers.

RECOMMENDATION:

• We recommend you to update HP HPLIP to given version link: https://developers.hp.com/hp-linux-imaging-and-printing/gethplip

REFERENCES:

The following reports contain further technical details:
https://securityonline.info/hp-linux-driver-hplip-vulnerabilities-cve-2026-8631-rce/