Buffer Overflow Vulnerability in HP LaserJet Pro Products
CVE-2023-35176

8.8HIGH

Key Information:

Vendor: HP
Status: HP Laserjet Pro
Vendor: CVE Published:; 30 June 2023

Summary

Certain HP LaserJet Pro print products are exposed to buffer overflow vulnerabilities that can lead to denial of service. This issue arises when the backup and restore feature is accessed through the device's embedded web service, potentially allowing unauthorized access and manipulation of the device's operations. It is crucial for users to evaluate their product configurations and apply necessary security measures to mitigate these risks.

Affected Version(s)

HP LaserJet Pro See HP Security Bulletin reference for affected versions.

References

https://support.hp.com/us-en/document/ish_8651671-8651697...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 30, 2023
Vulnerability Reserved
Jun 14, 2023