cancel
Showing results for 
Search instead for 
Did you mean: 
Chipperchoi
New member
6 4 0 0
Message 1 of 7
207
Flag Post
HP Recommended

TLS Protocol Session Renegotiation Security Vulnerability

Hello all,

 

I am having some difficulty trying to figure out if this is something that can even be addressed. 

 

I have 22 printers that are all showing up on the Qualys scan of having this vulnerability but how do you address this?

On a workstation or server, I can patch this or just create a registry key to disable renegotiation but how do you do that on printers? Some models do have TLS/SSL options that you can disable but some do not... I don't even know if all of the TLS protocols can be disabled. 

Please point me in the right direction if you have experienced this and much appreciated. 

 

 

6 REPLIES 6
HP Support Agent
HP Support Agent
6,259 6,246 337 247
Message 2 of 7
156
Flag Post
HP Recommended

TLS Protocol Session Renegotiation Security Vulnerability

@Chipperchoi

 

Welcome to the HP Support Community.

 

To help you further with this, let us know the Printer name.

 

Thanks 🙂


I am an HP Employee

Reply
0 Kudos
Chipperchoi
New member
6 4 0 0
Message 3 of 7
148
Flag Post
HP Recommended

TLS Protocol Session Renegotiation Security Vulnerability

Hello Betty,

 

This is a vulnerability coming up for multiple printers ranging from M series to P series printers (various models).

 

Some models do have the "wizard" where you can basically disable certain TLS versions but even with those, I don't think has any options to disable the renegotiation. 

Reply
0 Kudos
HP Support Agent
HP Support Agent
6,259 6,246 337 247
Message 4 of 7
128
Flag Post
HP Recommended

TLS Protocol Session Renegotiation Security Vulnerability

I would need to know the Printer name in detail as we need to see if these are consumer or commercial units and every Printer's configuration/setting is different.

 

Thanks 🙂


I am an HP Employee

Reply
0 Kudos
Chipperchoi
New member
6 4 0 0
Message 5 of 7
118
Flag Post
HP Recommended

TLS Protocol Session Renegotiation Security Vulnerability

These are a few models that we are seeing ths on.

 

M452nw
M477fnw
M402dw
P3015

Reply
0 Kudos
HP Support Agent
HP Support Agent
6,259 6,246 337 247
Message 6 of 7
99
Flag Post
HP Recommended

TLS Protocol Session Renegotiation Security Vulnerability

I recommend you to contact the HP Support Team regarding this.

 

Link: www.hp.com/contacthp/

 

Note:  Select the country accordingly to get the contact details for support.


I am an HP Employee

Reply
0 Kudos
Chipperchoi
New member
6 4 0 0
Message 7 of 7
69
Flag Post
HP Recommended

TLS Protocol Session Renegotiation Security Vulnerability

That is really no help as you guys don't support out of warranty products. 

Reply
0 Kudos
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation