CVE-2023-35177

Summary

CVE-2023-35177 is a newly identified cybersecurity vulnerability affecting certain HP LaserJet Pro print products. The issue stems from a stack-based buffer overflow in the compact font format parser. If exploited, an attacker could potentially inject malicious code and execute arbitrary commands on the affected system. Successful exploitation could lead to serious consequences, including unauthorized access to sensitive data or system compromise. HP strongly recommends users apply the available patches to mitigate this risk. Unpatched systems are at heightened risk and should be secured immediately.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.