TROYANOSYVIRUS
Zuruck zu CVEs

CVE-2025-14233

CRITICAL
9.8

Beschreibung

Invalid free in CPCA file deletion processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.

CVE Details

CVSS v3.1 Bewertung9.8
SchweregradCRITICAL
CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AngriffsvektorNETWORK
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht1/16/2026
Zuletzt geandert1/26/2026
Quellenvd
Honeypot-Sichtungen0

Betroffene Produkte

canon:lbp1238_iicanon:lbp1238_ii_firmwarecanon:lbp236dwcanon:lbp236dw_firmwarecanon:lbp237dwcanon:lbp237dw_firmwarecanon:lbp632cdwcanon:lbp632cdw_firmwarecanon:lbp633cdwcanon:lbp633cdw_firmwarecanon:mf1238_iicanon:mf1238_ii_firmwarecanon:mf1643i_iicanon:mf1643i_ii_firmwarecanon:mf1643if_iicanon:mf1643if_ii_firmwarecanon:mf451dwcanon:mf451dw_firmwarecanon:mf452dwcanon:mf452dw_firmwarecanon:mf453dwcanon:mf453dw_firmwarecanon:mf455dwcanon:mf455dw_firmwarecanon:mf652cdwcanon:mf652cw_firmwarecanon:mf653cdwcanon:mf653cdw_firmwarecanon:mf654cdwcanon:mf654cdw_firmwarecanon:mf656cdwcanon:mf656cdw_firmware

Schwachen (CWE)

CWE-763

Referenzen

https://canon.jp/support/support-info/260115vulnerability-response(f98c90f0-e9bd-4fa7-911b-51993f3571fd)
https://psirt.canon/advisory-information/cp2026-001/(f98c90f0-e9bd-4fa7-911b-51993f3571fd)
https://www.canon-europe.com/support/product-security/(f98c90f0-e9bd-4fa7-911b-51993f3571fd)
https://www.usa.canon.com/support/canon-product-advisories/Service-Notice-Regarding-Remediation-Measure-Against-Potential-Buffer-Overflow-Vulnerability-in-Laser-Printers-and-Small-Office-Multifunctional-Printers(f98c90f0-e9bd-4fa7-911b-51993f3571fd)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.