Out-of-Bounds Read Vulnerabilities in Canon Printer Drivers
CVE-2025-7698

5.9MEDIUM

Key Information:

Vendor

Canon Inc.

Status
Generic Plus Pcl6 Printer Driver
Generic Plus Ufr Ii Printer Driver
Generic Plus Lips4 Printer Driver
Generic Plus Lipslx Printer Driver
Vendor
CVE Published:
29 September 2025

What is CVE-2025-7698?

Out-of-bounds read vulnerabilities have been identified in several Generic Plus printer drivers provided by Canon. These vulnerabilities could allow an attacker to access sensitive information inadvertently by exploiting the print processing functionalities. This type of vulnerability can occur when a program reads data that exceeds the boundaries of allocated memory, potentially leading to unauthorized data exposure. Users of affected Canon printer drivers should seek immediate remediation as outlined in Canon's advisory documentation, to prevent potential exploitation and safeguard their document processing operations.

Affected Version(s)

Generic Plus LIPS4 Printer Driver 3.30 and earlier

Generic Plus LIPSLX Printer Driver 3.30 and earlier

Generic Plus PCL6 Printer Driver 3.30 and earlier

References

https://psirt.canon/advisory-information/cp2025-005/
vendor-advisory
https://canon.jp/support/support-info/250925vulnerability...
vendor-advisory
https://www.usa.canon.com/about-us/to-our-customers/cp202...
vendor-advisory

CVSS V4

Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-7698 : Out-of-Bounds Read Vulnerabilities in Canon Printer Drivers