CVE-2025-2146
Essential information
- Published
- 26/05/2025 00:15
- Modified
- 26/05/2025 00:15
- Author
- —
- Creator
- —
- CVSS
- 9.8 CRITICAL (v3.1)
- CISA KEV
- No
- CWE
- —
- CVSS vector
-
—
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H—
CVSS metrics
- Access vector
- —
- Access complexity
- —
- Authentication
- —
- Confidentiality impact
- —
- Integrity impact
- —
- Availability impact
- —
- Exploitability
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- NETWORK
- Attack complexity
- LOW
- Privileges required
- NONE
- User interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality impact
- HIGH
- Integrity impact
- HIGH
- Availability impact
- HIGH
- Exploit code maturity
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- —
- Attack complexity
- —
- Attack requirements
- —
- Privileges required
- —
- User interaction
- —
- Confidentiality (V)
- —
- Confidentiality (S)
- —
- Integrity (V)
- —
- Integrity (S)
- —
- Availability (V)
- —
- Availability (S)
- —
- Exploit maturity
- —
Description
Buffer overflow in WebService Authentication processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw/Satera MF551dw/Satera MF457dw firmware v05.07 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw/imageCLASS MF455dw/imageCLASS MF453dw/imageCLASS MF452dw/imageCLASS MF451dw/imageCLASS LBP237dw/imageCLASS LBP236dw/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II/imageCLASS X LBP1238 II firmware v05.07 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw/i-SENSYS MF553dw/i-SENSYS MF552dw/i-SENSYS MF455dw/i-SENSYS MF453dw/i-SENSYS LBP236dw/i-SENSYS LBP233dw/imageRUNNER 1643iF II/imageRUNNER 1643i II/i-SENSYS X 1238iF II/i-SENSYS X 1238i II/i-SENSYS X 1238P II/i-SENSYS X 1238Pr II firmware v05.07 and earlier sold in Europe.
NVD status
- Status
- Received — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- f98c90f0-e9bd-4fa7-911b-51993f3571fd
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| canon / satera mf656cdw | cpe:2.3:a:canon:satera_mf656cdw:5.07:*:*:*:*:*:*:* |
| canon / satera mf654cdw | cpe:2.3:a:canon:satera_mf654cdw:5.07:*:*:*:*:*:*:* |
| canon / satera mf551dw | cpe:2.3:a:canon:satera_mf551dw:5.07:*:*:*:*:*:*:* |
| canon / satera mf457dw | cpe:2.3:a:canon:satera_mf457dw:5.07:*:*:*:*:*:*:* |
| canon / color imageclass mf656cdw | cpe:2.3:a:canon:color_imageclass_mf656cdw:5.07:*:*:*:*:*:*:* |
| canon / color imageclass mf654cdw | cpe:2.3:a:canon:color_imageclass_mf654cdw:5.07:*:*:*:*:*:*:* |
| canon / color imageclass mf653cdw | cpe:2.3:a:canon:color_imageclass_mf653cdw:5.07:*:*:*:*:*:*:* |
| canon / color imageclass mf652cdw | cpe:2.3:a:canon:color_imageclass_mf652cdw:5.07:*:*:*:*:*:*:* |
| canon / color imageclass lbp633cdw | cpe:2.3:a:canon:color_imageclass_lbp633cdw:5.07:*:*:*:*:*:*:* |
| canon / color imageclass lbp632cdw | cpe:2.3:a:canon:color_imageclass_lbp632cdw:5.07:*:*:*:*:*:*:* |
| canon / imageclass mf455dw | cpe:2.3:a:canon:imageclass_mf455dw:5.07:*:*:*:*:*:*:* |
| canon / imageclass mf453dw | cpe:2.3:a:canon:imageclass_mf453dw:5.07:*:*:*:*:*:*:* |
| canon / imageclass mf452dw | cpe:2.3:a:canon:imageclass_mf452dw:5.07:*:*:*:*:*:*:* |
| canon / imageclass mf451dw | cpe:2.3:a:canon:imageclass_mf451dw:5.07:*:*:*:*:*:*:* |
| canon / imageclass lbp237dw | cpe:2.3:a:canon:imageclass_lbp237dw:5.07:*:*:*:*:*:*:* |
| canon / imageclass lbp236dw | cpe:2.3:a:canon:imageclass_lbp236dw:5.07:*:*:*:*:*:*:* |
| canon / x mf1238 ii | cpe:2.3:a:canon:x_mf1238_ii:5.07:*:*:*:*:*:*:* |
| canon / x mf1643i ii | cpe:2.3:a:canon:x_mf1643i_ii:5.07:*:*:*:*:*:*:* |
| canon / x mf1643if ii | cpe:2.3:a:canon:x_mf1643if_ii:5.07:*:*:*:*:*:*:* |
| canon / x lbp1238 ii | cpe:2.3:a:canon:x_lbp1238_ii:5.07:*:*:*:*:*:*:* |
| canon / i-sensys mf657cdw | cpe:2.3:a:canon:i-sensys_mf657cdw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys mf655cdw | cpe:2.3:a:canon:i-sensys_mf655cdw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys mf651cdw | cpe:2.3:a:canon:i-sensys_mf651cdw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys lbp633cdw | cpe:2.3:a:canon:i-sensys_lbp633cdw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys lbp631cdw | cpe:2.3:a:canon:i-sensys_lbp631cdw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys mf553dw | cpe:2.3:a:canon:i-sensys_mf553dw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys mf552dw | cpe:2.3:a:canon:i-sensys_mf552dw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys mf455dw | cpe:2.3:a:canon:i-sensys_mf455dw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys mf453dw | cpe:2.3:a:canon:i-sensys_mf453dw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys lbp236dw | cpe:2.3:a:canon:i-sensys_lbp236dw:5.07:*:*:*:*:*:*:* |
| canon / i-sensys lbp233dw | cpe:2.3:a:canon:i-sensys_lbp233dw:5.07:*:*:*:*:*:*:* |
| canon / imagerunner 1643if ii | cpe:2.3:a:canon:imagerunner_1643if_ii:5.07:*:*:*:*:*:*:* |
| canon / imagerunner 1643i ii | cpe:2.3:a:canon:imagerunner_1643i_ii:5.07:*:*:*:*:*:*:* |
| canon / i-sensys x 1238if ii | cpe:2.3:a:canon:i-sensys_x_1238if_ii:5.07:*:*:*:*:*:*:* |
| canon / i-sensys x 1238i ii | cpe:2.3:a:canon:i-sensys_x_1238i_ii:5.07:*:*:*:*:*:*:* |
| canon / i-sensys x 1238p ii | cpe:2.3:a:canon:i-sensys_x_1238p_ii:5.07:*:*:*:*:*:*:* |
| canon / i-sensys x 1238pr ii | cpe:2.3:a:canon:i-sensys_x_1238pr_ii:5.07:*:*:*:*:*:*:* |