Buffer Overflow Vulnerability in HP LaserJet Pro Products
CVE-2023-27971

9.8CRITICAL

Key Information:

Vendor: HP
Status: HP Laserjet Pro
Vendor: CVE Published:; 28 April 2023

What is CVE-2023-27971?

Certain models within the HP LaserJet Pro series exhibit a vulnerability that may allow an attacker to exploit a buffer overflow, leading to potential elevation of privilege. This could enable unauthorized access to sensitive functionalities within the print products, posing a risk to information security. Users of the affected devices should take appropriate measures to mitigate potential threats.

Affected Version(s)

HP LaserJet Pro See HP Security Bulletin reference for affected versions.

References

https://support.hp.com/us-en/document/ish_7919962-7920003...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 28, 2023
Vulnerability Reserved
Mar 8, 2023