Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for DocuPrint CP228w by FUJIFILM Business Innovation Corp.

    CVE-2024-45320 (GCVE-0-2024-45320)

    Vulnerability from nvd – Published: 2025-02-18 05:20 – Updated: 2025-02-18 14:58
    VLAI
    Summary
    Out-of-bounds write vulnerability exists in DocuPrint CP225w 01.22.01 and earlier, DocuPrint CP228w 01.22.01 and earlier, DocuPrint CM225fw 01.10.01 and earlier, and DocuPrint CM228fw 01.10.01 and earlier. If an affected MFP processes a specially crafted printer job file, a denial-of-service (DoS) condition may occur.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-45320",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-18T14:58:39.290272Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-18T14:58:44.985Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "DocuPrint CP225w",
              "vendor": "FUJIFILM Business Innovation Corp.",
              "versions": [
                {
                  "status": "affected",
                  "version": "01.22.01 and earlier"
                }
              ]
            },
            {
              "product": "DocuPrint CP228w",
              "vendor": "FUJIFILM Business Innovation Corp.",
              "versions": [
                {
                  "status": "affected",
                  "version": "01.22.01 and earlier"
                }
              ]
            },
            {
              "product": "DocuPrint CM225fw",
              "vendor": "FUJIFILM Business Innovation Corp.",
              "versions": [
                {
                  "status": "affected",
                  "version": "01.10.01 and earlier"
                }
              ]
            },
            {
              "product": "DocuPrint CM228fw",
              "vendor": "FUJIFILM Business Innovation Corp.",
              "versions": [
                {
                  "status": "affected",
                  "version": "01.10.01 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Out-of-bounds write vulnerability exists in DocuPrint CP225w 01.22.01 and earlier, DocuPrint CP228w 01.22.01 and earlier, DocuPrint CM225fw 01.10.01 and earlier, and DocuPrint CM228fw 01.10.01 and earlier. If an affected MFP processes a specially crafted printer job file, a denial-of-service (DoS) condition may occur."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "Out-of-bounds write",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-02-18T05:20:23.570Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.fujifilm.com/fbglobal/eng/company/news/notice/2025/0217_announce.html"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU96297631/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-45320",
        "datePublished": "2025-02-18T05:20:23.570Z",
        "dateReserved": "2024-08-27T01:52:28.658Z",
        "dateUpdated": "2025-02-18T14:58:44.985Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-45320 (GCVE-0-2024-45320)

    Vulnerability from cvelistv5 – Published: 2025-02-18 05:20 – Updated: 2025-02-18 14:58
    VLAI
    Summary
    Out-of-bounds write vulnerability exists in DocuPrint CP225w 01.22.01 and earlier, DocuPrint CP228w 01.22.01 and earlier, DocuPrint CM225fw 01.10.01 and earlier, and DocuPrint CM228fw 01.10.01 and earlier. If an affected MFP processes a specially crafted printer job file, a denial-of-service (DoS) condition may occur.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-45320",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-18T14:58:39.290272Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-18T14:58:44.985Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "DocuPrint CP225w",
              "vendor": "FUJIFILM Business Innovation Corp.",
              "versions": [
                {
                  "status": "affected",
                  "version": "01.22.01 and earlier"
                }
              ]
            },
            {
              "product": "DocuPrint CP228w",
              "vendor": "FUJIFILM Business Innovation Corp.",
              "versions": [
                {
                  "status": "affected",
                  "version": "01.22.01 and earlier"
                }
              ]
            },
            {
              "product": "DocuPrint CM225fw",
              "vendor": "FUJIFILM Business Innovation Corp.",
              "versions": [
                {
                  "status": "affected",
                  "version": "01.10.01 and earlier"
                }
              ]
            },
            {
              "product": "DocuPrint CM228fw",
              "vendor": "FUJIFILM Business Innovation Corp.",
              "versions": [
                {
                  "status": "affected",
                  "version": "01.10.01 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Out-of-bounds write vulnerability exists in DocuPrint CP225w 01.22.01 and earlier, DocuPrint CP228w 01.22.01 and earlier, DocuPrint CM225fw 01.10.01 and earlier, and DocuPrint CM228fw 01.10.01 and earlier. If an affected MFP processes a specially crafted printer job file, a denial-of-service (DoS) condition may occur."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.0"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "Out-of-bounds write",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-02-18T05:20:23.570Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.fujifilm.com/fbglobal/eng/company/news/notice/2025/0217_announce.html"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU96297631/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-45320",
        "datePublished": "2025-02-18T05:20:23.570Z",
        "dateReserved": "2024-08-27T01:52:28.658Z",
        "dateUpdated": "2025-02-18T14:58:44.985Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }