Buffer Overflow in Canon Office Multifunction Printers and Laser Printers
CVE-2023-0851
Summary
A buffer overflow vulnerability exists in the CPCA Resource Download process of specific Office and Small Office Multifunction Printers and Laser Printers by Canon. An attacker on the same network segment can exploit this vulnerability to render the printers unresponsive or potentially execute arbitrary code. The issue affects various models sold in regions including Japan, the US, and Europe with firmware versions 11.04 and earlier.
Affected Version(s)
Canon Office/Small Office Multifunction Printers and Laser Printers Satera LBP660C Series/LBP620C Series/MF740C Series/MF640C Series firmware Ver.11.04 and earlier sold in Japan. Color imageCLASS LBP660C Series/LBP 620C Series/X LBP1127C/MF740C Series/MF640C Series/X MF1127C firmware Ver.11.04 and earlier sold in US. i-SENSYS LBP660C Series/LBP620C Series/MF740C Series/MF640C Series, C1127P, C1127iF, C1127i firmware Ver.11.04 and earlier sold in Europe.
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved