CVE-2023-5113 — MEDIUM (6.1)

Q: What is CVE-2023-5113?

CVE-2023-5113 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI.

Q: How severe is CVE-2023-5113?

CVE-2023-5113 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-5113?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Futuresmart 5, Hp Color Laserjet Enterprise 5700 49K98A, Hp Color Laserjet Enterprise 5700 6Qn28A, Hp Color Laserjet Enterprise 6700 49L00A, Hp Color Laserjet Enterprise 6700 4Y280A.

Vulnerability Description

Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI.

CVSS Score

6.1

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Hp	Futuresmart 5	< 5.7
Hp	Color Laserjet Enterprise 5700 49K98A	-
Hp	Color Laserjet Enterprise 5700 6Qn28A	-
Hp	Color Laserjet Enterprise 6700 49L00A	-
Hp	Color Laserjet Enterprise 6700 4Y280A	-
Hp	Color Laserjet Enterprise 6700 58M42A	-
Hp	Color Laserjet Enterprise 6700 6Qn33A	-
Hp	Color Laserjet Enterprise 6701 49L00A	-
Hp	Color Laserjet Enterprise 6701 4Y280A	-
Hp	Color Laserjet Enterprise 6701 58M42A	-
Hp	Color Laserjet Enterprise 6701 6Qn33A	-
Hp	Color Laserjet Enterprise Flow Mfp 5800 58R10A	-
Hp	Color Laserjet Enterprise Flow Mfp 5800 6Qn29A	-
Hp	Color Laserjet Enterprise Flow Mfp 5800 6Qn30A	-
Hp	Color Laserjet Enterprise Flow Mfp 5800 6Qn31A	-
Hp	Color Laserjet Enterprise Flow Mfp 6800 49K84A	-
Hp	Color Laserjet Enterprise Flow Mfp 6800 4Y279A	-
Hp	Color Laserjet Enterprise Flow Mfp 6800 6Qn35A	-
Hp	Color Laserjet Enterprise Flow Mfp 6800 6Qn36A	-
Hp	Color Laserjet Enterprise Flow Mfp 6800 6Qn37A	-

Related Weaknesses (CWE)

CWE-79

References

https://support.hp.com/us-en/document/ish_9365285-9365309-16Vendor Advisory
https://support.hp.com/us-en/document/ish_9365285-9365309-16Vendor Advisory

FAQ

What is CVE-2023-5113?

CVE-2023-5113 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI.

How severe is CVE-2023-5113?

CVE-2023-5113 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-5113?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Futuresmart 5, Hp Color Laserjet Enterprise 5700 49K98A, Hp Color Laserjet Enterprise 5700 6Qn28A, Hp Color Laserjet Enterprise 6700 49L00A, Hp Color Laserjet Enterprise 6700 4Y280A.