CVSS: 10.0EPSS: 0%CPEs: 37EXPL: 0CVE-2025-2146 – Canon imageCLASS MF656Cdw sfpcmAuthenticateSecAdmin Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-2146
25 May 2025 — Buffer overflow in WebService Authentication processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw/Satera MF551dw/Satera MF457dw firmware v05.07 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632C... • https://canon.jp/support/support-info/250127vulnerability-response • CWE-787: Out-of-bounds Write •
CVSS: 8.7EPSS: 0%CPEs: 4EXPL: 0CVE-2025-3079
https://notcve.org/view.php?id=CVE-2025-3079
19 May 2025 — A passback vulnerability which relates to office/small office multifunction printers and laser printers. • https://canon.jp/support/support-info/250519vulnerability-response • CWE-522: Insufficiently Protected Credentials •
CVSS: 8.7EPSS: 0%CPEs: 5EXPL: 0CVE-2025-3078
https://notcve.org/view.php?id=CVE-2025-3078
19 May 2025 — A passback vulnerability which relates to production printers and office multifunction printers. • https://canon.jp/support/support-info/250519vulnerability-response • CWE-522: Insufficiently Protected Credentials •
CVSS: 9.7EPSS: 0%CPEs: 8EXPL: 0CVE-2025-1268
https://notcve.org/view.php?id=CVE-2025-1268
31 Mar 2025 — Out-of-bounds vulnerability in EMF Recode processing of Generic Plus PCL6 Printer Driver / Generic Plus UFR II Printer Driver / Generic Plus LIPS4 Printer Driver / Generic Plus LIPSLX Printer Driver / Generic Plus PS Printer Driver Out-of-bounds vulnerability in EMF Recode processing of Generic Plus PCL6 Printer Driver / Generic Plus UFR II Printer Driver / Generic Plus LIPS4 Printer Driver / Generic Plus LIPSLX Printer Driver / Generic Plus PS Printer Driver / Generic FAX Printer Driver / UFRII LT Printer ... • https://canon.jp/support/support-info/250328vulnerability-response • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2025-0236
https://notcve.org/view.php?id=CVE-2025-0236
26 Feb 2025 — Out-of-bounds vulnerability in slope processing during curve rendering in Generic PCL6 V4 Printer Driver / Generic UFR II V4 Printer Driver / Generic LIPSLX V4 Printer Driver. • https://psirt.canon/advisory-information/cp2025-002 • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2025-0235
https://notcve.org/view.php?id=CVE-2025-0235
26 Feb 2025 — Out-of-bounds vulnerability due to improper memory release during image rendering in Generic PCL6 V4 Printer Driver / Generic UFR II V4 Printer Driver / Generic LIPSLX V4 Printer Driver. • https://psirt.canon/advisory-information/cp2025-002 • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2025-0234
https://notcve.org/view.php?id=CVE-2025-0234
26 Feb 2025 — Out-of-bounds vulnerability in curve segmentation processing of Generic PCL6 V4 Printer Driver / Generic UFR II V4 Printer Driver / Generic LIPSLX V4 Printer Driver. • https://psirt.canon/advisory-information/cp2025-002 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 13EXPL: 0CVE-2024-12649 – Canon imageCLASS MF656Cdw TTF Parsing Write-What-Where Condition Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-12649
28 Jan 2025 — Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US.... • https://canon.jp/support/support-info/250127vulnerability-response • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 13EXPL: 0CVE-2024-12648 – Canon imageCLASS MF656Cdw TIF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-12648
28 Jan 2025 — Buffer overflow in TIFF data EXIF tag processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold i... • https://canon.jp/support/support-info/250127vulnerability-response • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 13EXPL: 0CVE-2024-12647 – Canon imageCLASS MF656Cdw listObjects2 Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-12647
28 Jan 2025 — Buffer overflow in CPCA font download processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold i... • https://canon.jp/support/support-info/250127vulnerability-response • CWE-787: Out-of-bounds Write •