CVE-2023-35177

Q: What is the severity of CVE-2023-35177?

CVE-2023-35177 has a CVSS score of 8.8 (HIGH). This vulnerability in HP LaserJet Pro printers allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the compact font format parser. Attackers could potentially take full control of affected printers. Organizations using vulnerable HP LaserJet Pro models are affected.

8.8 HIGH

Remote Code Execution Buffer Overflow

📋 TL;DR

This vulnerability in HP LaserJet Pro printers allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the compact font format parser. Attackers could potentially take full control of affected printers. Organizations using vulnerable HP LaserJet Pro models are affected.

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Laserjet Pro M304 M305 W1a46a Firmware by Hp

Laserjet Pro M304 M305 W1a47a Firmware by Hp

Laserjet Pro M304 M305 W1a48a Firmware by Hp

Laserjet Pro M304 M305 W1a66a Firmware by Hp

Laserjet Pro M404 M405 93m22a Firmware by Hp

Laserjet Pro M404 M405 W1a51a Firmware by Hp

Laserjet Pro M404 M405 W1a52a Firmware by Hp

Laserjet Pro M404 M405 W1a53a Firmware by Hp

Laserjet Pro M404 M405 W1a56a Firmware by Hp

Laserjet Pro M404 M405 W1a57a Firmware by Hp

Laserjet Pro M404 M405 W1a58a Firmware by Hp

Laserjet Pro M404 M405 W1a59a Firmware by Hp

Laserjet Pro M404 M405 W1a60a Firmware by Hp

Laserjet Pro M404 M405 W1a63a Firmware by Hp

Laserjet Pro M453 M454 W1y40a Firmware by Hp

Laserjet Pro M453 M454 W1y41a Firmware by Hp

Laserjet Pro M453 M454 W1y43a Firmware by Hp

Laserjet Pro M453 M454 W1y44a Firmware by Hp

Laserjet Pro M453 M454 W1y45a Firmware by Hp

Laserjet Pro M453 M454 W1y46a Firmware by Hp

Laserjet Pro M453 M454 W1y47a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a29a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a30a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a32a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a34a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a35a Firmware by Hp

Laserjet Pro Mfp M428 M429 F W1a38a Firmware by Hp

Laserjet Pro Mfp M428 M429 W1a28a Firmware by Hp

Laserjet Pro Mfp M428 M429 W1a31a Firmware by Hp

Laserjet Pro Mfp M428 M429 W1a33a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a75a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a76a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a77a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a78a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a79a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a80a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a81a Firmware by Hp

Laserjet Pro Mfp M478 M479 W1a82a Firmware by Hp

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Network segmentation

Disable unnecessary services

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities