CVE-2025-12785

HIGH
Published Nov 13, 2025 Modified Feb 13, 2026 CWE-200

Description

Certain HP LaserJet Pro printers may be vulnerable to information disclosure leading to credential exposure by altering the scan/send destination address and/or modifying the LDAP Server.

Is your site exposed to CVE-2025-12785?

Run a free security scan — no signup, results in seconds.

CVSS v3.1 Score

7.5
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Weakness Type (CWE)

CWE-200 CWE-200

Affected Products

Vendor Product
hp w1y47a_firmware
hp w1y47a
hp 7kw48a_firmware
hp 7kw48a
hp 7kw49a_firmware
hp 7kw49a
hp 7kw50a_firmware
hp 7kw50a
hp 7kw51a_firmware
hp 7kw51a
hp 7kw54a_firmware
hp 7kw54a
hp 7kw55a_firmware
hp 7kw55a
hp 7kw56a_firmware
hp 7kw56a
hp 7kw57a_firmware
hp 7kw57a
hp 7kw58a_firmware
hp 7kw58a
hp 7kw59a_firmware
hp 7kw59a
hp 7kw63a_firmware
hp 7kw63a
hp 7kw64a_firmware
hp 7kw64a
hp 7kw65a_firmware
hp 7kw65a
hp 7kw66a_firmware
hp 7kw66a
hp 7kw67a_firmware
hp 7kw67a
hp 7kw68a_firmware
hp 7kw68a
hp 7kw72a_firmware
hp 7kw72a
hp 7kw73a_firmware
hp 7kw73a
hp 7kw74a_firmware
hp 7kw74a
hp 7kw75a_firmware
hp 7kw75a
hp 7kw76a_firmware
hp 7kw76a
hp 7kw77a_firmware
hp 7kw77a
hp 7kw78a_firmware
hp 7kw78a
hp 7kw79a_firmware
hp 7kw79a
hp 93m22a_firmware
hp 93m22a
hp w1a28a_firmware
hp w1a28a
hp w1a29a_firmware
hp w1a29a
hp w1a30a_firmware
hp w1a30a
hp w1a31a_firmware
hp w1a31a
hp w1a32a_firmware
hp w1a32a
hp w1a33a_firmware
hp w1a33a
hp w1a34a_firmware
hp w1a34a
hp w1a35a_firmware
hp w1a35a
hp w1a38a_firmware
hp w1a38a
hp w1a46a_firmware
hp w1a46a
hp w1a47a_firmware
hp w1a47a
hp w1a48a_firmware
hp w1a48a
hp w1a51a_firmware
hp w1a51a
hp w1a52a_firmware
hp w1a52a
hp w1a53a_firmware
hp w1a53a
hp w1a56a_firmware
hp w1a56a
hp w1a57a_firmware
hp w1a57a
hp w1a58a_firmware
hp w1a58a
hp w1a59a_firmware
hp w1a59a
hp w1a60a_firmware
hp w1a60a
hp w1a63a_firmware
hp w1a63a
hp w1a66a_firmware
hp w1a66a
hp w1a75a_firmware
hp w1a75a
hp w1a76a_firmware
hp w1a76a
hp w1a77a_firmware
hp w1a77a
hp w1a78a_firmware
hp w1a78a
hp w1a79a_firmware
hp w1a79a
hp w1a80a_firmware
hp w1a80a
hp w1a81a_firmware
hp w1a81a
hp w1a82a_firmware
hp w1a82a
hp w1y40a_firmware
hp w1y40a
hp w1y41a_firmware
hp w1y41a
hp w1y43a_firmware
hp w1y43a
hp w1y44a_firmware
hp w1y44a
hp w1y45a_firmware
hp w1y45a
hp w1y46a_firmware
hp w1y46a

References

Frequently Asked Questions

What is CVE-2025-12785? +
Certain HP LaserJet Pro printers may be vulnerable to information disclosure leading to credential exposure by altering the scan/send destination address and/or modifying the LDAP Server. It has a CVSS v3.1 base score of 7.5 (HIGH).
How severe is CVE-2025-12785? +
CVE-2025-12785 has a CVSS v3.1 score of 7.5 out of 10, rated HIGH. This is a high-severity vulnerability that should be prioritized for patching.
What products are affected by CVE-2025-12785? +
CVE-2025-12785 affects products from hp, specifically: 7kw48a, 7kw48a_firmware, 7kw49a, 7kw49a_firmware, 7kw50a, 7kw50a_firmware, 7kw51a, 7kw51a_firmware, 7kw54a, 7kw54a_firmware, 7kw55a, 7kw55a_firmware, 7kw56a, 7kw56a_firmware, 7kw57a, 7kw57a_firmware, 7kw58a, 7kw58a_firmware, 7kw59a, 7kw59a_firmware, 7kw63a, 7kw63a_firmware, 7kw64a, 7kw64a_firmware, 7kw65a, 7kw65a_firmware, 7kw66a, 7kw66a_firmware, 7kw67a, 7kw67a_firmware, 7kw68a, 7kw68a_firmware, 7kw72a, 7kw72a_firmware, 7kw73a, 7kw73a_firmware, 7kw74a, 7kw74a_firmware, 7kw75a, 7kw75a_firmware, 7kw76a, 7kw76a_firmware, 7kw77a, 7kw77a_firmware, 7kw78a, 7kw78a_firmware, 7kw79a, 7kw79a_firmware, 93m22a, 93m22a_firmware, w1a28a, w1a28a_firmware, w1a29a, w1a29a_firmware, w1a30a, w1a30a_firmware, w1a31a, w1a31a_firmware, w1a32a, w1a32a_firmware, w1a33a, w1a33a_firmware, w1a34a, w1a34a_firmware, w1a35a, w1a35a_firmware, w1a38a, w1a38a_firmware, w1a46a, w1a46a_firmware, w1a47a, w1a47a_firmware, w1a48a, w1a48a_firmware, w1a51a, w1a51a_firmware, w1a52a, w1a52a_firmware, w1a53a, w1a53a_firmware, w1a56a, w1a56a_firmware, w1a57a, w1a57a_firmware, w1a58a, w1a58a_firmware, w1a59a, w1a59a_firmware, w1a60a, w1a60a_firmware, w1a63a, w1a63a_firmware, w1a66a, w1a66a_firmware, w1a75a, w1a75a_firmware, w1a76a, w1a76a_firmware, w1a77a, w1a77a_firmware, w1a78a, w1a78a_firmware, w1a79a, w1a79a_firmware, w1a80a, w1a80a_firmware, w1a81a, w1a81a_firmware, w1a82a, w1a82a_firmware, w1y40a, w1y40a_firmware, w1y41a, w1y41a_firmware, w1y43a, w1y43a_firmware, w1y44a, w1y44a_firmware, w1y45a, w1y45a_firmware, w1y46a, w1y46a_firmware, w1y47a, w1y47a_firmware. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2025-12785? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2025-12785 — free, no signup required.