CVE & CISA-KEV Catalog

CVE-2023-4063

MEDIUM
5.3
CVSS v3
NVD

Description

Certain HP OfficeJet Pro printers are potentially vulnerable to a Denial of Service when using an improper eSCL URL GET request.

How to fix

Remediation Available
1kr42a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1kr45a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1kr46a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1kr48a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1kr49a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1kr54a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1kr55a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1kr55b firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1kr55d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr66a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr67a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr68a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr69a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr69c firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr70a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr71a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr72a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr73a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr73d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr74a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr75a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr76a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr77a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr78a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr78b firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr79a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
1mr80d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk83a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk83b firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk84a firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk85d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk86b firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk90d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk91b firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk93d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk96d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk97d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk98d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3uk99d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3ul00d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
3ul05b firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD
y8m28d firmwareNVD
Affected:< 002.2349aFixed in:002.2349aCVE-2023-4063derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityLow

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Exploit Intelligence

0.57%probability of exploitation in 30 days
43rdpercentile

Moderate risk: more likely to be exploited than 43% of all known CVEs.

References

Vendor Advisory1

Related Vulnerabilities

Other CWE-400 (Resource Exhaustion) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2023-44487High7.5100%KEVFix
CVE-2021-44228Critical10.0100%KEV + RansomFix
CVE-2011-3192High7.899%-Fix
CVE-2019-11478Medium5.395%-Fix
CVE-2024-25617Medium5.389%-Fix
CVE-2018-1000115High7.589%-Fix
Embed a live status badge for CVE-2023-4063
CVE-2023-4063 severity badge

Markdown

[![CVE-2023-4063](https://tridentstack.com/cve/badge/CVE-2023-4063.svg)](https://tridentstack.com/cve/CVE-2023-4063)

HTML

<a href="https://tridentstack.com/cve/CVE-2023-4063"><img src="https://tridentstack.com/cve/badge/CVE-2023-4063.svg" alt="CVE-2023-4063"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-02-20.