CVE-2013-4614

N/A

Description

English/pages_MacUS/wls_set_content.html on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers shows the Wi-Fi PSK passphrase in cleartext, which allows physically proximate attackers to obtain sensitive information by reading the screen of an unattended workstation.

CVE Details

CVSS v3.1 ScoreN/A

Published6/21/2013

Last Modified4/29/2026

Sourcenvd

Honeypot Sightings0

Affected Products

canon:mg3100_printercanon:mg5300_printercanon:mg6100_printercanon:mp340_printercanon:mp495_printercanon:mx870_printercanon:mx890_printercanon:mx920_printercanon:mx922_printer

Weaknesses (CWE)

CWE-255

References

http://archives.neohapsis.com/archives/fulldisclosure/2013-06/0146.html(cve@mitre.org)

http://www.mattandreko.com/2013/06/canon-y-u-no-security.html(cve@mitre.org)

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/canon_wireless.rb(cve@mitre.org)

http://archives.neohapsis.com/archives/fulldisclosure/2013-06/0146.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.mattandreko.com/2013/06/canon-y-u-no-security.html(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/canon_wireless.rb(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.