Vulnerabilities > HP > Laserjet PRO MFP M428 M429 F W1A29A Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-06-30 CVE-2023-35175 Server-Side Request Forgery (SSRF) vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Potential Remote Code Execution and/or Elevation of Privilege via Server-Side Request Forgery (SSRF) using the Web Service Eventing model.
network
low complexity
hp CWE-918
critical
9.8
2023-06-30 CVE-2023-35176 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Denial of Service when using the backup & restore feature through the embedded web service on the device.
low complexity
hp CWE-120
8.8
2023-06-30 CVE-2023-35177 Out-of-bounds Write vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to a stack-based buffer overflow related to the compact font format parser.
low complexity
hp CWE-787
8.8
2023-06-30 CVE-2023-35178 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow when performing a GET request to scan jobs.
low complexity
hp CWE-120
8.8
2023-04-28 CVE-2023-27973 Out-of-bounds Write vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Heap Overflow and/or Remote Code Execution.
network
low complexity
hp CWE-787
critical
9.8
2023-04-28 CVE-2023-27971 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Elevation of Privilege.
network
low complexity
hp CWE-120
critical
9.8
2023-04-28 CVE-2023-27972 Classic Buffer Overflow vulnerability in HP products
Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Remote Code Execution.
network
low complexity
hp CWE-120
critical
9.8
2022-03-23 CVE-2022-24291 Unspecified vulnerability in HP products
Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
network
low complexity
hp
7.5
2022-03-23 CVE-2022-24292 Unspecified vulnerability in HP products
Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
network
low complexity
hp
critical
9.8
2022-03-23 CVE-2022-24293 Unspecified vulnerability in HP products
Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
network
low complexity
hp
critical
9.8