CVE-2026-1789

MEDIUM

4.9

Description

A vulnerability in the browser-based remote management interface may allow an administrator to access sensitive information on the device via crafted requests, affecting certain production printers and office/small office multifunction printers.

CVE Details

CVSS v3.1 Score4.9

SeverityMEDIUM

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredHIGH

User InteractionNONE

Published4/24/2026

Last Modified4/24/2026

Sourcenvd

Honeypot Sightings0

Weaknesses (CWE)

CWE-807

References

https://canon.jp/support/support-info/260423vulnerability-response(f98c90f0-e9bd-4fa7-911b-51993f3571fd)

https://psirt.canon/advisory-information/cp2026-003/(f98c90f0-e9bd-4fa7-911b-51993f3571fd)

https://www.canon-europe.com/support/product-security/(f98c90f0-e9bd-4fa7-911b-51993f3571fd)

https://www.usa.canon.com/about-us/to-our-customers/cpa2026-003-vulnerability-mitigation-remediation-for-production-printers-and-office-multifunction-printers(f98c90f0-e9bd-4fa7-911b-51993f3571fd)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.