Out-of-Bounds Write Vulnerability in Fujifilm DocuPrint Multifuntion Printers
CVE-2024-45320

6.5MEDIUM

Key Information:

Vendor: Fujifilm Business Innovation Corp.
Status: Docuprint Cp225w; Docuprint Cp228w; Docuprint Cm225fw; Docuprint Cm228fw
Vendor: CVE Published:; 18 February 2025

🔔 Create Fujifilm Business Innovation Corp. Vulnerability Alert

What is CVE-2024-45320?

An out-of-bounds write vulnerability exists in multiple models of Fujifilm's DocuPrint multifunction printers, specifically in versions 01.22.01 and earlier for the CP225w and CP228w, and versions 01.10.01 and earlier for the CM225fw and CM228fw. This vulnerability can be triggered when a specially crafted printer job file is processed, potentially leading to a denial-of-service condition. Users of affected devices should consider applying any available patches or updates to mitigate this risk.

Affected Version(s)

DocuPrint CM225fw 01.10.01 and earlier

DocuPrint CM228fw 01.10.01 and earlier

DocuPrint CP225w 01.22.01 and earlier

References

https://www.fujifilm.com/fbglobal/eng/company/news/notice...

https://jvn.jp/en/vu/JVNVU96297631/

CVSS V3.0

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 18, 2025
Vulnerability Reserved
Aug 27, 2024