CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
48.9%
Buffer overflow in the Address Book password process in authentication of Mobile Device Function of Office Multifunction Printers and Laser Printers() which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.: Satera LBP670C Series/Satera MF750C Series firmware v03.07 and earlier sold in Japan. Color imageCLASS LBP674C/Color imageCLASS X LBP1333C/Color imageCLASS MF750C Series/Color imageCLASS X MF1333C Series firmware v03.07 and earlier sold in US. i-SENSYS LBP673Cdw/C1333P/i-SENSYS MF750C Series/C1333i Series firmware v03.07 and earlier sold in Europe.
Vendor | Product | Version | CPE |
---|---|---|---|
canon | mf755cdw_firmware | * | cpe:2.3:o:canon:mf755cdw_firmware:*:*:*:*:*:*:*:* |
canon | mf755cdw | - | cpe:2.3:h:canon:mf755cdw:-:*:*:*:*:*:*:* |
canon | mf753cdw_firmware | * | cpe:2.3:o:canon:mf753cdw_firmware:*:*:*:*:*:*:*:* |
canon | mf753cdw | - | cpe:2.3:h:canon:mf753cdw:-:*:*:*:*:*:*:* |
canon | mf751cdw_firmware | * | cpe:2.3:o:canon:mf751cdw_firmware:*:*:*:*:*:*:*:* |
canon | mf751cdw | - | cpe:2.3:h:canon:mf751cdw:-:*:*:*:*:*:*:* |
canon | lbp674c_firmware | * | cpe:2.3:o:canon:lbp674c_firmware:*:*:*:*:*:*:*:* |
canon | lbp674c | - | cpe:2.3:h:canon:lbp674c:-:*:*:*:*:*:*:* |
canon | lbp672c_firmware | * | cpe:2.3:o:canon:lbp672c_firmware:*:*:*:*:*:*:*:* |
canon | lbp672c | - | cpe:2.3:h:canon:lbp672c:-:*:*:*:*:*:*:* |
canon.jp/support/support-info/240205vulnerability-response
psirt.canon/advisory-information/cp2024-001/
www.canon-europe.com/support/product-security-latest-news/
www.usa.canon.com/support/canon-product-advisories/Service-Notice-Regarding-Vulnerability-Measure-Against-Buffer-Overflow-for-Laser-Printers-and-Small-Office-Multifunctional-Printers
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
48.9%