External risk intelligence

HP LaserJet Pro SSRF Remote Code Execution Vulnerability

CVE advisorySeverity: CRITICAL (CVSS 9.8)

CVE-2023-35175

The affected products are enterprise and consumer printers. While these devices include network-accessible management interfaces, they are typically deployed on internal local networks and are rarely intentionally exposed directly to the public internet.

Server-Side Request Forgery

Hp W1a75a Firmware

before 002_2322c

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

External exposure likelihood

Horizon Alert

Summary of the vulnerability and why it matters

A security vulnerability has been identified in certain HP LaserJet Pro print products. This issue could allow unauthorized remote code execution or privilege escalation through a Server-Side Request Forgery vulnerability within the Web Service Eventing model. The main concern is confirming relevance and exposure given the nature of the affected technology.

  • Vulnerability in HP printers allows remote takeover.
  • Remember this for potential sensitive document exposure.
  • Confirm if your HP printers are at risk.

Attack Path

How an attacker could exploit the issue

An attacker could exploit this vulnerability by sending a specially crafted request to the printer's Web Service Eventing interface. This could allow them to perform server-side requests, potentially leading to remote code execution or privilege escalation on the affected device.

  • No authentication required.
  • Triggered via Web Service Eventing.
  • Risk of code execution or privilege escalation.

Live Threat

Current exploitation, exposure, and threat context

HP LaserJet Pro print products could be at risk of remote code execution or privilege escalation due to a Server-Side Request Forgery vulnerability in the Web Service Eventing model. This could allow an attacker to interact with internal network resources from the printer's network context.

  • Printer network access and control.
  • Via crafted web service requests.
  • Unauthorized access or system compromise.

Operational Fix

Recommended remediation, mitigation, and detection steps

This vulnerability affects HP LaserJet Pro printers, with potential impact on remote code execution and privilege escalation. Ownership typically falls to teams managing print infrastructure and device security, as well as potentially the application owners if integrated into workflows. The immediate practical step is to inventory all affected printer models, assess their network exposure and criticality, and then coordinate with HP or their vendor for firmware updates or mitigating controls.

  • Print infrastructure and security teams own.
  • Verify network exposure and printer criticality.
  • Coordinate firmware updates or vendor engagement.

Supplementary metadata

Validate whether this threat affects your internet-facing exposure.

Halo Threat Intelligence helps prioritize remediation with Halo Surface Signal and H/A/L/O context. Start exposure validation with a free external attack surface trial.

Frequently asked questions

What is the software affected by CVE-2023-35175?

This vulnerability affects various HP LaserJet Pro printer models and their corresponding firmware versions. These devices are widely used in office and home environments for document printing, scanning, and management tasks. The printers include built-in web-based management interfaces that allow administrators to configure network settings, monitor status, and manage printing jobs over a local network connection.

What does CVE-2023-35175 mean technically?

This issue is classified as Server-Side Request Forgery (CWE-918). It occurs when the printer's Web Service Eventing model fails to properly validate incoming requests. An attacker can exploit this weakness to force the printer to send unauthorized requests to other destinations. In the context of this CVE, this flaw could be leveraged to achieve remote code execution or elevate privileges, potentially granting an attacker control over the printer's internal functions.

How can an attacker trigger this vulnerability?

The vulnerability is triggered by sending specially crafted requests to the printer's Web Service Eventing interface. An attacker needs network access to this interface to initiate the exploit. Requests that do not interact with the specific vulnerable components of the Web Service Eventing model or requests coming from unauthorized sources that are blocked by network security controls will not successfully trigger this specific flaw.

Do I need to worry if my printer is internal?

Halo Surface Signal indicates that while these printers have network management interfaces, they are typically deployed on internal networks and are rarely intentionally exposed to the public internet. If your printer is kept on a private, internal network without direct public access, the immediate risk of external exploitation is significantly lower, though it remains a concern for internal lateral movement.

What is the first step to address CVE-2023-35175?

The primary response is to update the firmware on your affected HP LaserJet Pro devices to the latest available version provided by the manufacturer. Updating firmware resolves the underlying security defect. Check the official HP support portal for your specific model to identify the corrected firmware version and apply it following standard maintenance procedures.

References