CVE-2025-43023
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-28
Last updated on: 2025-11-04
Assigner: HP Inc.
Description
Description
A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software documentation. This potential vulnerability is due to the use of a weak code signing key, Digital Signature Algorithm (DSA).
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| hp | linux_imaging_and_printing_software | 4.0 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-347 | The product does not verify, or incorrectly verifies, the cryptographic signature for data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves the HP Linux Imaging and Printing Software documentation using a weak code signing key based on the Digital Signature Algorithm (DSA), which could potentially compromise the integrity and authenticity of the software components.
How can this vulnerability impact me? :
The use of a weak code signing key may allow attackers to forge or tamper with software components, potentially leading to unauthorized code execution or the installation of malicious software, thereby impacting system security.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70