CVE & CISA-KEV Catalog

CVE-2023-29984

HIGH
7.5
CVSS v3
NVD

Description

Null pointer dereference vulnerability exists in multiple vendors MFPs and printers which implement Debut web server 1.2 or 1.3. Processing a specially crafted request may lead an affected product to a denial-of-service (DoS) condition. As for the affected products/models/versions, see the detailed information provided by each vendor.

How to fix

Remediation Available
docuprint p115 w firmwareNVD
Affected:< 1.11Fixed in:1.11CVE-2023-29984derived from NVD
docuprint p225 d firmwareNVD
Affected:< 1.17Fixed in:1.17CVE-2023-29984derived from NVD
docuprint p265 dw firmwareNVD
Affected:< 1.21Fixed in:1.21CVE-2023-29984derived from NVD
docuprint p268 d firmwareNVD
Affected:< 1.21Fixed in:1.21CVE-2023-29984derived from NVD
docuprint p268 dw firmwareNVD
Affected:< 1.21Fixed in:1.21CVE-2023-29984derived from NVD
hl-1210w firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1210we firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1210wr firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1210wvb firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1211w firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1212w firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1212we firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1212wr firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1212wvb firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1218w firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1222we firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1223we firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-1223wr firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-2560dn firmwareNVD
Affected:< 1.35Fixed in:1.35CVE-2023-29984derived from NVD
hl-l2305w firmwareNVD
Affected:< 1.24Fixed in:1.24CVE-2023-29984derived from NVD
hl-l2315dw firmwareNVD
Affected:< 1.24Fixed in:1.24CVE-2023-29984derived from NVD
hl-l2340dw firmwareNVD
Affected:< 1.26Fixed in:1.26CVE-2023-29984derived from NVD
hl-l2340dwr firmwareNVD
Affected:< 1.26Fixed in:1.26CVE-2023-29984derived from NVD
hl-l2360dn firmwareNVD
Affected:< 1.35Fixed in:1.35CVE-2023-29984derived from NVD
hl-l2360dnr firmwareNVD
Affected:< 1.35Fixed in:1.35CVE-2023-29984derived from NVD
hl-l2360dw firmwareNVD
Affected:< 1.35Fixed in:1.35CVE-2023-29984derived from NVD
hl-l2361dn firmwareNVD
Affected:< 1.35Fixed in:1.35CVE-2023-29984derived from NVD
hl-l2365dw firmwareNVD
Affected:< 1.35Fixed in:1.35CVE-2023-29984derived from NVD
hl-l2365dwr firmwareNVD
Affected:< 1.35Fixed in:1.35CVE-2023-29984derived from NVD
hl-l2366dw firmwareNVD
Affected:< 1.35Fixed in:1.35CVE-2023-29984derived from NVD
hl-l8260cdn firmwareNVD
Affected:< 1.15Fixed in:1.15CVE-2023-29984derived from NVD
hl-l8260cdw firmwareNVD
Affected:< 1.15Fixed in:1.15CVE-2023-29984derived from NVD
hl-l8360cdw firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-l8360cdwt firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD
hl-l9310cdw firmwareNVD
Affected:< 1.20Fixed in:1.20CVE-2023-29984derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploit Intelligence

0.94%probability of exploitation in 30 days
57thpercentile

Moderate risk: more likely to be exploited than 57% of all known CVEs.

References

Vendor Advisory1
Third-Party Advisory1

Related Vulnerabilities

Other CWE-476 (NULL Pointer Dereference) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2023-21758High7.592%-Fix
CVE-2023-21547High7.588%-Fix
CVE-2014-3470Medium4.386%-Fix
CVE-2021-44224High8.282%-Fix
CVE-2016-0742High7.582%-Fix
CVE-2009-1386Medium5.080%-Fix
Embed a live status badge for CVE-2023-29984
CVE-2023-29984 severity badge

Markdown

[![CVE-2023-29984](https://tridentstack.com/cve/badge/CVE-2023-29984.svg)](https://tridentstack.com/cve/CVE-2023-29984)

HTML

<a href="https://tridentstack.com/cve/CVE-2023-29984"><img src="https://tridentstack.com/cve/badge/CVE-2023-29984.svg" alt="CVE-2023-29984"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.