Lucene search

F98c90f0-e9bd-4fa7-911b-51993f3571fdNVD:CVE-2023-1764

HistoryMay 17, 2023 - 1:15 a.m.

CVE-2023-1764

2023-05-1701:15:09

CWE-326

f98c90f0-e9bd-4fa7-911b-51993f3571fd

web.nvd.nist.gov

canon

ij network tool

security vulnerability

os x

sensitive information

wi-fi connection

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

23.6%

JSON

Canon IJ Network Tool/Ver.4.7.5 and earlier (supported OS: OS X 10.9.5-macOS 13),IJ Network Tool/Ver.4.7.3 and earlier (supported OS: OS X 10.7.5-OS X 10.8) allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the communication of the software.

Affected configurations

Nvd

Node

canonij_network_toolRange≤4.7.3

AND

applemac_os_xRange10.7.5–10.8.0

Node

canonij_network_toolRange≤4.7.5

AND

applemac_os_xRange10.9.5–10.15

applemacosRange11.0–13.0

VendorProductVersionCPE
canonij_network_tool*cpe:2.3:a:canon:ij_network_tool:*:*:*:*:*:*:*:*
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
applemacos*cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
canon	ij_network_tool	*	cpe:2.3:a:canon:ij_network_tool::::::::
apple	mac_os_x	*	cpe:2.3:o:apple:mac_os_x::::::::
apple	macos	*	cpe:2.3:o:apple:macos::::::::

References

psirt.canon/advisory-information/cp2023-002/

psirt.canon/hardening/

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

23.6%

JSON

Related for NVD:CVE-2023-1764