Arbitrary Code Execution Vulnerability in Canon imageCLASS Printers
CVE-2022-24672

8.8HIGH

Key Information:

Vendor

Canon

Status
Imageclass Mf644cdw
Vendor
CVE Published:
28 March 2023

What is CVE-2022-24672?

A vulnerability exists in Canon imageCLASS MF644Cdw 10.02 printers that allows network-adjacent attackers to execute arbitrary code. The flaw arises from inadequate validation of the length of user-supplied data, enabling the exploitation of a fixed-length heap-based buffer. Notably, this vulnerability does not require authentication, allowing attackers to potentially gain elevated privileges within the context of the service account. To mitigate risks associated with this issue, Canon has released advisories and recommendations for users to secure their devices.

Affected Version(s)

imageCLASS MF644Cdw 10.02

References

https://www.zerodayinitiative.com/advisories/ZDI-22-514/
https://www.usa.canon.com/support/canon-product-advisorie...

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

CVSS V3.0

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Mehdi Talbi (@abu_y0ussef), Remi Jullian (@netsecurity1), Thomas Jeunet (@cleptho), from @Synacktiv
.