CVE-2024-12649

EUVD-2024-51024
Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CanonCNA
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 62%
Affected Products (NVD)
VendorProductVersion
canonmf455dw_firmware
𝑥
≤ 05.04
canonmf453dw_firmware
𝑥
≤ 05.04
canonmf452dw_firmware
𝑥
≤ 05.04
canonmf451dw_firmware
𝑥
≤ 05.04
canonmf465dw_firmware
𝑥
≤ 05.04
canonmf462dw_firmware
𝑥
≤ 05.04
canonmf656cdw_firmware
𝑥
≤ 05.04
canonmf654cdw_firmware
𝑥
≤ 05.04
canonmf653cdw_firmware
𝑥
≤ 05.04
canonmf652cw_firmware
𝑥
≤ 05.04
canonmf1238_ii_firmware
𝑥
≤ 05.04
canonmf1440_firmware
𝑥
≤ 05.04
canonmf1643if_ii_firmware
𝑥
≤ 05.04
canonmf1643i_ii_firmware
𝑥
≤ 05.04
canonlbp237dw_firmware
𝑥
≤ 05.04
canonlbp236dw_firmware
𝑥
≤ 05.04
canonlbp247dw_firmware
𝑥
≤ 05.04
canonlbp246dw_firmware
𝑥
≤ 05.04
canonlbp633cdw_firmware
𝑥
≤ 05.04
canonlbp632cdw_firmware
𝑥
≤ 05.04
canonlbp1238_ii_firmware
𝑥
≤ 05.04
canonlbp1440_firmware
𝑥
≤ 05.04
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://canon.jp/support/support-info/250127vulnerability-response
https://psirt.canon/advisory-information/cp2025-001/
https://www.canon-europe.com/support/product-security/#news
https://www.usa.canon.com/support/canon-product-advisories/service-notice-regarding-vulnerability-measure-against-buffer-overflow-for-laser-printers-and-small-office-multifunctional-printers