🗓️ Sign up for the 2025 runZero Hour webcast series and never miss a new episode! Register Now

Start Free Book Demo

Platform
- Overview
  The runZero Platform provides complete security visibility across IT, OT, IoT, cloud, mobile, and remote assets so that you can see and secure everything on your network.
  
  Attack Surface Management
  
  Exposure Mitigation
  
  Risk & Compliance
  
  Fast Deployment & Scalability
- Integrations
  runZero seamlessly integrates with a wide variety of tools, enhancing network visibility, enriching asset data, and uncovering control gaps.
- Community Edition
  Our completely free version of the runZero Platform is ideal for home use and environments with fewer than 100 assets.
Gartner® Peer Insights™ Customers' Choice for CAASM

runZero has been recognized as a Customers’ Choice for cyber asset attack surface management (CAASM) in the 2024 Gartner Voice of the Customer report.

Get the Report
Resources
- runZero Blog
  See what's happening at runZero and read up on the latest ideas, opinions, and articles from our experts and researchers.
- runZero Research
  Explore the world of exposure management through the runZero lens.
  
  Research Blogs
  
  Rapid Responses
- Resource Center
  Dive into a treasure trove of resources to expand your exposure management knowledge.
  
  Reports
  
  Webcasts
  
  Solution Briefs
  
  Product Videos
- Support Resources
  Everything you need to maximize your experience with the runZero Platform.
  
  Documentation
  
  REST API
  
  Open Source
  
  Changelog
SSHamble is now available!

Our researchers discovered a broad range of weaknesses across SSH implementations and applications that impact critical network security devices and software. These long standing issues have remained undiscovered due to the lack of tooling available. Enter SSHamble, our new open source tool.

Get SSHamble
Pricing
Customers
- Our Customers
  Our customers are everything. We're super proud to be trusted by leading organizations around the globe to help them improve their security.
- Case Studies
  See how runZero has empowered security teams to take control of their networks, uncover their unknowns, and save significant time and money.
- Testimonials
  Read reviews of the runZero Platform and see how teams have improved their security with our technology.
New Report Published by the U.S. Department of Energy

CECA evaluations confirm runZero's active scanning enhances ICS visibility without performance impact on SCADA.

Read the Report
Partners
- Infinity Partner Program
  See how we can work together to provide best-in-class security solutions and outcomes for our joint customers.
- Partner Directory
  Explore our directory of trusted (and awesome) partners.
- Partner Sign In
  Sign in to our Infinity Partner Portal.
Join our Infinity Partner Program

Designed with a partner-first mindset, the runZero Infinity Partner Program offers incredibly valuable resources, relationships, and rewards to partners who choose to grow their business with us.

Become a runZero Partner
About
- About Us
  Wondering who the heck are these people? Meet the team and get the story behind runZero... once upon a time called Rumble.
- Events
  Track down runZero Yetis in the wild! Join us in-person or virtually at one of our upcoming events.
  
  runZero Hour
- Investors
  Meet the cybersecurity investors, trailblazers, and innovators who help us navigate our journey and the evolving security landscape.
- Newsroom
  Read the latest articles, announcements, and press releases from runZero.
- Careers
  Want to join our forces? We're looking for bright minds and passionate souls who want to write the next chapter in exposure management.
runZero Research Report: Volume 1

As a leading CAASM platform, runZero has a unique, insider’s perspective on the state of asset security. See the alarming gaps & unexpected exposures that our research team uncovered.

Get the Research Report

🗓️ Sign up for the 2025 runZero Hour webcast series and never miss a new episode! Register Now

Overview
The runZero Platform provides complete security visibility across IT, OT, IoT, cloud, mobile, and remote assets so that you can see and secure everything on your network.
Integrations
runZero seamlessly integrates with a wide variety of tools, enhancing network visibility, enriching asset data, and uncovering control gaps.
Community Edition
Our completely free version of the runZero Platform is ideal for home use and environments with fewer than 100 assets.

Gartner® Peer Insights™ Customers' Choice for CAASM

runZero has been recognized as a Customers’ Choice for cyber asset attack surface management (CAASM) in the 2024 Gartner Voice of the Customer report.

Get the Report

runZero Blog
See what's happening at runZero and read up on the latest ideas, opinions, and articles from our experts and researchers.
runZero Research
Explore the world of exposure management through the runZero lens.
- Research Blogs
- Rapid Responses
Resource Center
Dive into a treasure trove of resources to expand your exposure management knowledge.
Support Resources
Everything you need to maximize your experience with the runZero Platform.

SSHamble is now available!

Our researchers discovered a broad range of weaknesses across SSH implementations and applications that impact critical network security devices and software. These long standing issues have remained undiscovered due to the lack of tooling available. Enter SSHamble, our new open source tool.

Get SSHamble

Our Customers
Our customers are everything. We're super proud to be trusted by leading organizations around the globe to help them improve their security.
Case Studies
See how runZero has empowered security teams to take control of their networks, uncover their unknowns, and save significant time and money.
Testimonials
Read reviews of the runZero Platform and see how teams have improved their security with our technology.

New Report Published by the U.S. Department of Energy

CECA evaluations confirm runZero's active scanning enhances ICS visibility without performance impact on SCADA.

Read the Report

About Us
Wondering who the heck are these people? Meet the team and get the story behind runZero... once upon a time called Rumble.
Events
Track down runZero Yetis in the wild! Join us in-person or virtually at one of our upcoming events.
- runZero Hour
Investors
Meet the cybersecurity investors, trailblazers, and innovators who help us navigate our journey and the evolving security landscape.
Newsroom
Read the latest articles, announcements, and press releases from runZero.
Careers
Want to join our forces? We're looking for bright minds and passionate souls who want to write the next chapter in exposure management.

runZero Research Report: Volume 1

As a leading CAASM platform, runZero has a unique, insider’s perspective on the state of asset security. See the alarming gaps & unexpected exposures that our research team uncovered.

Get the Research Report

Infinity Partner Program
See how we can work together to provide best-in-class security solutions and outcomes for our joint customers.
Partner Directory
Explore our directory of trusted (and awesome) partners.
Partner Sign In
Sign in to our Infinity Partner Portal.

Join our Infinity Partner Program

Designed with a partner-first mindset, the runZero Infinity Partner Program offers incredibly valuable resources, relationships, and rewards to partners who choose to grow their business with us.

Become a runZero Partner

On This Page:

Latest HP printer and MFP vulnerability
How to find vulnerable HP printers and MFPs with runZero

How to find HP printers and multi-function printers (MFPs)

Pearce Barry

|

Updated December 3, 2021, 3:00am EST

Latest HP printer and MFP vulnerability #

Do you have HP printers and multi-function printers (MFPs)? You might want to look at the two recently published vulnerabilities that affect 150+ models. Named "Printing Shellz" by the F-Secure security researchers who reported them, these vulns have been around for ~8 years.

When successfully exploited, can provide attackers with:

CVE-2021-39237, "medium" CVSS score of 4.6 - Information disclosure via exposed connectors to gain shell access (requires physical access to the vulnerable device).
CVE-2021-39238, "critical" CVSS score of 9.8 - Remote code execution via buffer overflow in the font parsing logic.

HP LaserJet, PageWide, OfficeJet, and ScanJet product lines all contain vulnerable models. You can find the full lists in HP's posted advisories: CVE-2021-39237 and CVE-2021-39238.

HP released patched firmware last month and urged owners of affected printers to update their firmware as soon as possible. F-Secure's researchers also offer some mitigation strategies, as well in section 6 of their writeup.

How to find vulnerable HP printers and MFPs with runZero #

From the Asset Inventory, use the following pre-built query to locate potentially vulnerable HP printer and MFP assets within your network:

NOT hardware:"JetDirect" AND (mac_vendor:"HP" OR mac_vendor:="Hewlett Packard%" OR hardware:"HP%" OR hardware:="Hewlett Packard%") AND (type:printer OR os.family:"LaserJet" OR NOT (os:"%iLO%" OR type:switch OR type:computer))

Find HP printers

You can also search via the Service Inventory, using the following pre-built query to locate potentially HP printer and MFP services within your network:

_asset.protocol:http AND protocol:http AND ((html.title:="HP %LaserJet%" OR banner:="HP %LaserJet%") OR (html.title:="HP %PageWide%" OR banner:="HP %PageWide%") OR (html.title:="HP %OfficeJet%" OR banner:="HP %OfficeJet%") OR (html.title:="HP %ScanJet%" OR banner:="HP %ScanJet%"))

Find HP printers

Note that results from the above queries may contain models that are not vulnerable, so manual verification against the full lists of affected models published by HP (here and here) is needed.

As always, any prebuilt queries we create are available from our Queries Library. Check out the library for other useful inventory queries.

Written by Pearce Barry

More about Pearce Barry

Related Articles

Rapid Response

How to find rsync services on your network

Multiple vulnerabilities have been disclosed in the popular rsync file-synchronization tool – here's how to find rsync with runZero

Rapid Response

How to find BeyondTrust appliances on your network

BeyondTrust disclosed that affects their Privileged Remote Access (PRA) and Remote Support (RS) products. This has also been added to the CISA KEV...

Rapid Response

How to find BIND services

ISC disclosed that authoritative servers may experience assertion failures or other unexpected events when using DNSSEC-signed zones using NSEC3.

Rapid Response

How to find Go SSH servers on your network

How to discover Go SSH instances on your network that may be vulnerable to CVE-2024-45337

See Results in Minutes

Get complete visibility into IT, OT, & IoT — without agents, credentials, or hardware.

Try It Free

© Copyright 2025 runZero, Inc. All Rights Reserved