Remote Configuration Flaw in Canon Wireless Printers
CVE-2013-4613

Currently unrated

Key Information:

Vendor: Canon
Status: Mx870 Printer; Mg6100 Printer; Mp495 Printer; Mx922 Printer
Vendor: CVE Published:; 21 June 2013

What is CVE-2013-4613?

The Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers feature a default administrative interface that lacks authentication safeguards. This oversight allows remote attackers to access the Advanced settings page, enabling unauthorized modifications to printer configurations. Although Canon has indicated that this default setting was designed for user convenience, it poses a significant risk for users concerned about unauthorized access to their devices. Users are advised to configure their printers to require a password to mitigate this vulnerability.

References

http://www.mattandreko.com/2013/06/canon-y-u-no-security....

x_refsource_MISC

http://archives.neohapsis.com/archives/fulldisclosure/201...

mailing-listx_refsource_FULLDISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jun 21, 2013