·Summary
HP released a security advisory (HPSBPI03892) addressing two medium-severity vulnerabilities (CVE-2026-1145, CVE-2026-1146) in the embedded web server of the LaserJet Pro MFP M428/M429 and LaserJet Enterprise M507 series. Ninety-four campus printers are affected and will receive the update via HP Web Jetadmin.
Scope
| Model | Count | Buildings |
|---|---|---|
| HP LaserJet Pro MFP M428 | 61 | All academic buildings |
| HP LaserJet Enterprise M507 | 33 | Admin, Library, Student Union |
Update Method
Updates pushed silently via HP Web Jetadmin. Each printer reboots once (~90 seconds offline) during the update cycle. No user action required.
Impact
Brief print interruption per device during reboot. Jobs queued during reboot will print automatically once the device comes back online. No jobs will be lost.
Outcome
94 of 94 printers updated successfully. Vulnerability scan confirmed CVE-2026-1145 and CVE-2026-1146 resolved on all devices.
