CVE-2023-35177

MITRE NVD CVE.ORG JSON API Print: PDF PDF

Summary

CVECVE-2023-35177
StatePUBLISHED
Assignerhp
Source PriorityCVE Program / NVD first with legacy fallback
Published2023-06-30 16:15:09 UTC
Updated2026-06-25 18:08:34 UTC
DescriptionCertain HP LaserJet Pro print products are potentially vulnerable to a stack-based buffer overflow related to the compact font format parser.

Risk And Classification

Primary CVSS: v3.1 8.8 HIGH from [email protected]

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem Types: CWE-787

CVSS v3.1 Breakdown

Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Hardware Hp Laserjet Pro M304-m305 W1a46a - All All All
Operating System Hp Laserjet Pro M304-m305 W1a46a Firmware All All All All
Hardware Hp Laserjet Pro M304-m305 W1a47a - All All All
Operating System Hp Laserjet Pro M304-m305 W1a47a Firmware All All All All
Hardware Hp Laserjet Pro M304-m305 W1a48a - All All All
Operating System Hp Laserjet Pro M304-m305 W1a48a Firmware All All All All
Hardware Hp Laserjet Pro M304-m305 W1a66a - All All All
Operating System Hp Laserjet Pro M304-m305 W1a66a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 93m22a - All All All
Operating System Hp Laserjet Pro M404-m405 93m22a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 W1a51a - All All All
Operating System Hp Laserjet Pro M404-m405 W1a51a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 W1a52a - All All All
Operating System Hp Laserjet Pro M404-m405 W1a52a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 W1a53a - All All All
Operating System Hp Laserjet Pro M404-m405 W1a53a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 W1a56a - All All All
Operating System Hp Laserjet Pro M404-m405 W1a56a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 W1a57a - All All All
Operating System Hp Laserjet Pro M404-m405 W1a57a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 W1a58a - All All All
Operating System Hp Laserjet Pro M404-m405 W1a58a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 W1a59a - All All All
Operating System Hp Laserjet Pro M404-m405 W1a59a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 W1a60a - All All All
Operating System Hp Laserjet Pro M404-m405 W1a60a Firmware All All All All
Hardware Hp Laserjet Pro M404-m405 W1a63a - All All All
Operating System Hp Laserjet Pro M404-m405 W1a63a Firmware All All All All
Hardware Hp Laserjet Pro M453-m454 W1y40a - All All All
Operating System Hp Laserjet Pro M453-m454 W1y40a Firmware All All All All
Hardware Hp Laserjet Pro M453-m454 W1y41a - All All All
Operating System Hp Laserjet Pro M453-m454 W1y41a Firmware All All All All
Hardware Hp Laserjet Pro M453-m454 W1y43a - All All All
Operating System Hp Laserjet Pro M453-m454 W1y43a Firmware All All All All
Hardware Hp Laserjet Pro M453-m454 W1y44a - All All All
Operating System Hp Laserjet Pro M453-m454 W1y44a Firmware All All All All
Hardware Hp Laserjet Pro M453-m454 W1y45a - All All All
Operating System Hp Laserjet Pro M453-m454 W1y45a Firmware All All All All
Hardware Hp Laserjet Pro M453-m454 W1y46a - All All All
Operating System Hp Laserjet Pro M453-m454 W1y46a Firmware All All All All
Hardware Hp Laserjet Pro M453-m454 W1y47a - All All All
Operating System Hp Laserjet Pro M453-m454 W1y47a Firmware All All All All
Hardware Hp Laserjet Pro Mfp M428-m429 F W1a29a - All All All
Operating System Hp Laserjet Pro Mfp M428-m429 F W1a29a Firmware All All All All
Hardware Hp Laserjet Pro Mfp M428-m429 F W1a30a - All All All
Operating System Hp Laserjet Pro Mfp M428-m429 F W1a30a Firmware All All All All
Hardware Hp Laserjet Pro Mfp M428-m429 F W1a32a - All All All
Operating System Hp Laserjet Pro Mfp M428-m429 F W1a32a Firmware All All All All
Hardware Hp Laserjet Pro Mfp M428-m429 F W1a34a - All All All
Operating System Hp Laserjet Pro Mfp M428-m429 F W1a34a Firmware All All All All
Hardware Hp Laserjet Pro Mfp M428-m429 F W1a35a - All All All
Operating System Hp Laserjet Pro Mfp M428-m429 F W1a35a Firmware All All All All
Hardware Hp Laserjet Pro Mfp M428-m429 F W1a38a - All All All
Operating System Hp Laserjet Pro Mfp M428-m429 F W1a38a Firmware All All All All
Hardware Hp Laserjet Pro Mfp M428-m429 W1a28a - All All All
Operating System Hp Laserjet Pro Mfp M428-m429 W1a28a Firmware All All All All
Hardware Hp Laserjet Pro Mfp M428-m429 W1a31a - All All All
Operating System Hp Laserjet Pro Mfp M428-m429 W1a31a Firmware All All All All
Hardware Hp Laserjet Pro Mfp M428-m429 W1a33a - All All All
Operating System Hp Laserjet Pro Mfp M428-m429 W1a33a Firmware All All All All
Hardware Hp W1a75a - All All All
Operating System Hp W1a75a Firmware All All All All
Hardware Hp W1a76a - All All All
Operating System Hp W1a76a Firmware All All All All
Hardware Hp W1a77a - All All All
Operating System Hp W1a77a Firmware All All All All
Hardware Hp W1a78a - All All All
Operating System Hp W1a78a Firmware All All All All
Hardware Hp W1a79a - All All All
Operating System Hp W1a79a Firmware All All All All
Hardware Hp W1a80a - All All All
Operating System Hp W1a80a Firmware All All All All
Hardware Hp W1a81a - All All All
Operating System Hp W1a81a Firmware All All All All
Hardware Hp W1a82a - All All All
Operating System Hp W1a82a Firmware All All All All

Vendor Declared Affected Products

SourceVendorProductVersionPlatforms
CNA HP Inc. HP LaserJet Pro affected See HP Security Bulletin reference for affected versions. Not specified

References

ReferenceSourceLinkTags
Certain HP LaserJet Pro Print Products - Potential Buffer Overflow | HP® Customer Support af854a3a-2127-422b-91ae-364da2661108 support.hp.com Vendor Advisory
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report