Lucene search

[email protected]CVE-2023-35176

HistoryJun 30, 2023 - 4:15 p.m.

CVE-2023-35176

2023-06-3016:15:09

CWE-120

[email protected]

web.nvd.nist.gov

laserjet

pro

print products

vulnerability

buffer overflow

denial of service

embedded web service

cve-2023-35176

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.2%

JSON

Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Denial of Service when using the backup & restore feature through the embedded web service on the device.

Affected configurations

NVD

Node

hplaserjet_pro_mfp_m478-m479_w1a75a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m478-m479_w1a75aMatch-

Node

hplaserjet_pro_mfp_m478-m479_w1a76a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m478-m479_w1a76aMatch-

Node

hplaserjet_pro_mfp_m478-m479_w1a77a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m478-m479_w1a77aMatch-

Node

hplaserjet_pro_mfp_m478-m479_w1a78a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m478-m479_w1a78aMatch-

Node

hplaserjet_pro_mfp_m478-m479_w1a79a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m478-m479_w1a79aMatch-

Node

hplaserjet_pro_mfp_m478-m479_w1a80a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m478-m479_w1a80aMatch-

Node

hplaserjet_pro_mfp_m478-m479_w1a81a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m478-m479_w1a81aMatch-

Node

hplaserjet_pro_mfp_m478-m479_w1a82a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m478-m479_w1a82aMatch-

Node

hplaserjet_pro_m453-m454_w1y40a_firmwareRange<002_2322c

AND

hplaserjet_pro_m453-m454_w1y40aMatch-

Node

hplaserjet_pro_m453-m454_w1y41a_firmwareRange<002_2322c

AND

hplaserjet_pro_m453-m454_w1y41aMatch-

Node

hplaserjet_pro_m453-m454_w1y43a_firmwareRange<002_2322c

AND

hplaserjet_pro_m453-m454_w1y43aMatch-

Node

hplaserjet_pro_m453-m454_w1y44a_firmwareRange<002_2322c

AND

hplaserjet_pro_m453-m454_w1y44aMatch-

Node

hplaserjet_pro_m453-m454_w1y45a_firmwareRange<002_2322c

AND

hplaserjet_pro_m453-m454_w1y45aMatch-

Node

hplaserjet_pro_m453-m454_w1y46a_firmwareRange<002_2322c

AND

hplaserjet_pro_m453-m454_w1y46aMatch-

Node

hplaserjet_pro_m453-m454_w1y47a_firmwareRange<002_2322c

AND

hplaserjet_pro_m453-m454_w1y47aMatch-

Node

hplaserjet_pro_m304-m305_w1a46a_firmwareRange<002_2322c

AND

hplaserjet_pro_m304-m305_w1a46aMatch-

Node

hplaserjet_pro_m304-m305_w1a47a_firmwareRange<002_2322c

AND

hplaserjet_pro_m304-m305_w1a47aMatch-

Node

hplaserjet_pro_m304-m305_w1a48a_firmwareRange<002_2322c

AND

hplaserjet_pro_m304-m305_w1a48aMatch-

Node

hplaserjet_pro_m304-m305_w1a66a_firmwareRange<002_2322c

AND

hplaserjet_pro_m304-m305_w1a66aMatch-

Node

hplaserjet_pro_m404-m405_93m22a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_93m22aMatch-

Node

hplaserjet_pro_m404-m405_w1a51a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_w1a51aMatch-

Node

hplaserjet_pro_m404-m405_w1a52a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_w1a52aMatch-

Node

hplaserjet_pro_m404-m405_w1a53a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_w1a53aMatch-

Node

hplaserjet_pro_m404-m405_w1a56a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_w1a56aMatch-

Node

hplaserjet_pro_m404-m405_w1a57a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_w1a57aMatch-

Node

hplaserjet_pro_m404-m405_w1a58a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_w1a58aMatch-

Node

hplaserjet_pro_m404-m405_w1a59a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_w1a59aMatch-

Node

hplaserjet_pro_m404-m405_w1a60a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_w1a60aMatch-

Node

hplaserjet_pro_m404-m405_w1a63a_firmwareRange<002_2322c

AND

hplaserjet_pro_m404-m405_w1a63aMatch-

Node

hplaserjet_pro_mfp_m428-m429_f_w1a29a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m428-m429_f_w1a29aMatch-

Node

hplaserjet_pro_mfp_m428-m429_f_w1a30a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m428-m429_f_w1a30aMatch-

Node

hplaserjet_pro_mfp_m428-m429_f_w1a32a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m428-m429_f_w1a32aMatch-

Node

hplaserjet_pro_mfp_m428-m429_f_w1a34a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m428-m429_f_w1a34aMatch-

Node

hplaserjet_pro_mfp_m428-m429_f_w1a35a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m428-m429_f_w1a35aMatch-

Node

hplaserjet_pro_mfp_m428-m429_f_w1a38a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m428-m429_f_w1a38aMatch-

Node

hplaserjet_pro_mfp_m428-m429_w1a28a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m428-m429_w1a28aMatch-

Node

hplaserjet_pro_mfp_m428-m429_w1a31a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m428-m429_w1a31aMatch-

Node

hplaserjet_pro_mfp_m428-m429_w1a33a_firmwareRange<002_2322c

AND

hplaserjet_pro_mfp_m428-m429_w1a33aMatch-

CPENameOperatorVersion
hp:laserjet_pro_mfp_m478-m479_w1a75a_firmwarehp laserjet pro mfp m478-m479 w1a75a firmwarelt002_2322c

CPE	Name	Operator	Version
hp:laserjet_pro_mfp_m478-m479_w1a75a_firmware	hp laserjet pro mfp m478-m479 w1a75a firmware	lt	002_2322c

CNA Affected

[
  {
    "versions": [
      {
        "version": "See HP Security Bulletin reference for affected versions.",
        "status": "affected"
      }
    ],
    "product": "HP LaserJet Pro",
    "vendor": "HP Inc."
  }
]