Vulnerabilities > HP > Laserjet PRO M404 M405 W1A63A Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-06-30 CVE-2023-35175 Server-Side Request Forgery (SSRF) vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Potential Remote Code Execution and/or Elevation of Privilege via Server-Side Request Forgery (SSRF) using the Web Service Eventing model.
network
low complexity
hp CWE-918
critical
9.8
2023-06-30 CVE-2023-35176 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Denial of Service when using the backup & restore feature through the embedded web service on the device.
low complexity
hp CWE-120
8.8
2023-06-30 CVE-2023-35177 Out-of-bounds Write vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to a stack-based buffer overflow related to the compact font format parser.
low complexity
hp CWE-787
8.8
2023-06-30 CVE-2023-35178 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow when performing a GET request to scan jobs.
low complexity
hp CWE-120
8.8
2023-04-28 CVE-2023-27973 Out-of-bounds Write vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Heap Overflow and/or Remote Code Execution.
network
low complexity
hp CWE-787
critical
9.8
2023-04-28 CVE-2023-27971 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Elevation of Privilege.
network
low complexity
hp CWE-120
critical
9.8
2023-04-28 CVE-2023-27972 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Remote Code Execution.
network
low complexity
hp CWE-120
critical
9.8