ГлавнаяУязвимости → CVE-2024-0244
9.8критическая

CVE-2024-0244

Описание

Buffer overflow in CPCA PCFAX number process of Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.*:Satera MF750C Series firmware v03.07 and earlier sold in Japan. Color imageCLASS MF750C Series/Color imageCLASS X MF1333C firmware v03.07 and earlier sold in US. i-SENSYS MF754Cdw/C1333iF firmware v03.07 and earlier sold in Europe.

Затрагиваемое ПО
Canon I-sensys mf754cdw firmwareCanon I-sensys mf754cdwCanon I-sensys x c1333if firmwareCanon I-sensys x c1333ifCanon Mf755cdw firmwareCanon Mf755cdwCanon Mf753cdw firmwareCanon Mf753cdwCanon Mf751cdw firmwareCanon Mf751cdwCanon Mf1333c firmwareCanon Mf1333cCanon Lbp1333c firmwareCanon Lbp1333c
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://canon.jp/support/support-info/240205vulnerability-responsehttps://psirt.canon/advisory-information/cp2024-001/https://www.canon-europe.com/support/product-security-latest-news/https://www.usa.canon.com/support/canon-product-advisories/Service-Notice-Regarding-Vulnerability-Measure-Against-Buffer-Overflow-for-Laser-Printers-and-Small-Office-Multifunctional-Printershttps://canon.jp/support/support-info/240205vulnerability-responsehttps://psirt.canon/advisory-information/cp2024-001/https://www.canon-europe.com/support/product-security-latest-news/https://www.usa.canon.com/support/canon-product-advisories/Service-Notice-Regarding-Vulnerability-Measure-Against-Buffer-Overflow-for-Laser-Printers-and-Small-Office-Multifunctional-Printers