CPE Details
HP LaserJet Pro M453-M454 W1Y40A Firmware 002_2310A
002_2310a
2023-05-09
12h25 +00:00
12h25 +00:00
2023-05-09
15h12 +00:00
15h12 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
CPE Name: cpe:2.3:o:hp:laserjet_pro_m453-m454_w1y40a_firmware:002_2310a:*:*:*:*:*:*:*
Informations
Vendor
hpProduct
laserjet_pro_m453-m454_w1y40a_firmwareVersion
002_2310aRelated CVE
| CVE ID | Published | Description | Score | Severity |
|---|---|---|---|---|
| Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow when performing a GET request to scan jobs. | 8.8 |
High |
||
| Certain HP LaserJet Pro print products are potentially vulnerable to a stack-based buffer overflow related to the compact font format parser. | 8.8 |
High |
||
| Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Denial of Service when using the backup & restore feature through the embedded web service on the device. | 8.8 |
High |
||
| Certain HP LaserJet Pro print products are potentially vulnerable to Potential Remote Code Execution and/or Elevation of Privilege via Server-Side Request Forgery (SSRF) using the Web Service Eventing model. | 9.8 |
Critical |
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.