CVSS: 6.4EPSS: 0%CPEs: 1133EXPL: 0CVE-2023-5113 – Certain HP Enterprise LaserJet, LaserJet Managed printers - Potential denial of service, potential Cross Site Scripting (XSS)
https://notcve.org/view.php?id=CVE-2023-5113
04 Oct 2023 — Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI. Certain HP Enterprise LaserJet and HP LaserJet Managed Printers son potencialmente vulnerables a la denegación de servicio debido a la solicitud de WS-Print y posibles inyecciones de Cross Site Scripting (XSS) a través de jQuery-UI. • https://support.hp.com/us-en/document/ish_9365285-9365309-16 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 5%CPEs: 1914EXPL: 0CVE-2023-1329
https://notcve.org/view.php?id=CVE-2023-1329
14 Jun 2023 — A potential security vulnerability has been identified for certain HP multifunction printers (MFPs). The vulnerability may lead to Buffer Overflow and/or Remote Code Execution when running HP Workpath solutions on potentially affected products. • https://support.hp.com/us-en/document/ish_8585737-8585769-16/hpsbpi03849 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 318EXPL: 0CVE-2023-1707
https://notcve.org/view.php?id=CVE-2023-1707
13 Jun 2023 — Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to information disclosure when IPsec is enabled with FutureSmart version 5.6. • https://support.hp.com/us-en/document/ish_7905330-7905358-16/hpsbpi03838 • CWE-203: Observable Discrepancy •