Out-of-Bounds Write Vulnerability in FUJIFILM Business Innovation MFPs
CVE-2025-48499

6.9MEDIUM

Key Information:

Vendor: Fujifilm Business Innovation Corp.
Status: Docuprint Cp225 W; Docuprint Cp228 W; Docuprint Cp115 W; Docuprint Cp118 W
Vendor: CVE Published:; 4 August 2025

🔔 Create Fujifilm Business Innovation Corp. Vulnerability Alert

What is CVE-2025-48499?

An out-of-bounds write vulnerability has been identified in FUJIFILM Business Innovation Multi-Function Products (MFPs). This flaw allows a specially crafted IPP (Internet Printing Protocol) or LPD (Line Printer Daemon) packet to cause a denial-of-service (DoS) condition on the affected devices. As a result, users may experience significant disruptions as the MFPs become unresponsive, requiring a manual reset to restore normal operation. It is crucial for organizations using these devices to be aware of this vulnerability to mitigate potential service interruptions.

Affected Version(s)

Apoes 2150 N 01.00.47 and earlier

Apoes 2150 ND 01.00.47 and earlier

Apoes 2150 NDA 01.00.47 and earlier

References

https://www.fujifilm.com/fbglobal/eng/company/news/notice...

https://jvn.jp/en/vu/JVNVU93897456/

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 4, 2025
Vulnerability Reserved
Jul 14, 2025