FKIE_CVE-2024-12649
Vulnerability from fkie_nvd - Published: 2025-01-28 01:15 - Updated: 2026-01-26 15:08
Severity ?
Summary
Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| canon | mf455dw_firmware | * | |
| canon | mf455dw | - | |
| canon | mf453dw_firmware | * | |
| canon | mf453dw | - | |
| canon | mf452dw_firmware | * | |
| canon | mf452dw | - | |
| canon | mf451dw_firmware | * | |
| canon | mf451dw | - | |
| canon | mf465dw_firmware | * | |
| canon | mf465dw | - | |
| canon | mf462dw_firmware | * | |
| canon | mf462dw | - | |
| canon | mf656cdw_firmware | * | |
| canon | mf656cdw | - | |
| canon | mf654cdw_firmware | * | |
| canon | mf654cdw | - | |
| canon | mf653cdw_firmware | * | |
| canon | mf653cdw | - | |
| canon | mf652cw_firmware | * | |
| canon | mf652cw | - | |
| canon | mf1238_ii_firmware | * | |
| canon | mf1238_ii | - | |
| canon | mf1440_firmware | * | |
| canon | mf1440 | - | |
| canon | mf1643if_ii_firmware | * | |
| canon | mf1643if_ii | - | |
| canon | mf1643i_ii_firmware | * | |
| canon | mf1643i_ii | - | |
| canon | lbp237dw_firmware | * | |
| canon | lbp237dw | - | |
| canon | lbp236dw_firmware | * | |
| canon | lbp236dw | - | |
| canon | lbp247dw_firmware | * | |
| canon | lbp247dw | - | |
| canon | lbp246dw_firmware | * | |
| canon | lbp246dw | - | |
| canon | lbp633cdw_firmware | * | |
| canon | lbp633cdw | - | |
| canon | lbp632cdw_firmware | * | |
| canon | lbp632cdw | - | |
| canon | lbp1238_ii_firmware | * | |
| canon | lbp1238_ii | - | |
| canon | lbp1440_firmware | * | |
| canon | lbp1440 | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf455dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "57F593A2-44BE-4090-BBE6-953134D0D1E2",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf455dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "376C5E10-0D6C-405D-BC63-BDE7257A8142",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf453dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "309D151A-B0A5-4B01-A54B-1C91BC45F170",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf453dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "020E1E4D-4055-446C-A403-544F50236262",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf452dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E1D56787-194E-4E84-A321-500C114E6895",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf452dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C814016-6D9B-483D-9C29-95E4624C6CA4",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf451dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "987055F8-7E20-4B8F-B1C4-7732E888B28A",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf451dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "700050B9-DA11-4D63-A3DB-D6924DD7F3DF",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf465dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E0316629-B0C6-4477-8DE6-844F13EC28DF",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf465dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BB632D61-FFEE-4ED0-8F33-A8404919E4D6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf462dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8CE9592C-EC74-4180-8B4A-A639F8AB5FC2",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf462dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1E4371D9-CC0B-431C-A04D-62B252ACD549",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf656cdw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A808FD8C-2E1E-4050-BA9C-78CFD61E196B",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf656cdw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C4A3D591-82ED-42C4-B724-EDFA5E196066",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf654cdw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2AA6EBC3-71A0-4467-B3EA-355425B0EF15",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf654cdw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "396973A5-0427-460C-A268-F44DE2E54C29",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf653cdw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F3B935E6-C5C1-4BD3-B80D-4FABEDF3AB67",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf653cdw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31A2712C-6508-4DA4-B1EE-4A665063D9E8",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf652cw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1B128468-BB29-4E9D-B06E-744158D36D2C",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf652cw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "976A3093-D510-4046-BB49-70187FBC8505",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf1238_ii_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "54BF39D0-5BB4-4F2E-B435-D74DEB24CD92",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf1238_ii:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B1DA9BB-15C1-4D4D-B73C-C995E859ACDC",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf1440_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DFB65847-A3D0-48F8-8A18-653759F669CC",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf1440:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5B544E39-2001-49BD-BC5A-3E21BCF50F8E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf1643if_ii_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9FC20747-28E3-4A25-9838-0D936C25D4FF",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf1643if_ii:-:*:*:*:*:*:*:*",
"matchCriteriaId": "264748B9-82FD-466C-894B-232305D930E4",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:mf1643i_ii_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9BDB4157-4AC9-4A59-AC7C-CFA1B4D6D4A7",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:mf1643i_ii:-:*:*:*:*:*:*:*",
"matchCriteriaId": "60EF8B7A-8184-469E-AB2B-C13C24E4F01C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:lbp237dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A5ADFB3E-D870-43D7-916F-E820E88B91B4",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:lbp237dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3406797E-EE0A-419B-862D-DBD8B505CCF6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:lbp236dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A018BC1D-1DF8-479B-91D8-820828B40447",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:lbp236dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C4077161-199F-44A0-AE33-BC999E06B8E6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:lbp247dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "844474A9-3503-4A6B-8A0D-56E85EF021D1",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:lbp247dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "123F28F0-1509-42A8-A702-F6378E61375C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:lbp246dw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5B7CD3E1-F2F8-4824-86E8-7693E7EED309",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:lbp246dw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B10A84C6-1C16-46BF-8056-C516BCD3A128",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:lbp633cdw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "ED93AF90-6AAC-437C-B941-65B18A36F19A",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:lbp633cdw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0E319965-0012-44F0-92A1-481BACA5C140",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:lbp632cdw_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1ED64209-5508-42D7-BC33-7E1A4A753BCD",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:lbp632cdw:-:*:*:*:*:*:*:*",
"matchCriteriaId": "96F1019F-0C13-4FCD-B9C1-7B58D7080953",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:lbp1238_ii_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "66A3432D-CD0D-4481-B73C-DCDFA073D4E5",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:lbp1238_ii:-:*:*:*:*:*:*:*",
"matchCriteriaId": "555C8CC6-7E64-48A6-BC31-2CAA03FA8FCF",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canon:lbp1440_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2FA22DE5-D496-4ABE-B75D-6A8A84660B5F",
"versionEndIncluding": "05.04",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:canon:lbp1440:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8494F2A5-E30B-4203-9325-A9DA158276D9",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe."
},
{
"lang": "es",
"value": "Desbordamiento de b\u00fafer en el procesamiento de fuentes de datos XPS de impresoras multifunci\u00f3n para peque\u00f1as oficinas e impresoras l\u00e1ser (*) que puede permitir que un atacante en el segmento de red provoque que el producto afectado deje de responder o ejecute c\u00f3digo arbitrario. *: Firmware v05.04 y anteriores de Satera MF656Cdw/Satera MF654Cdw vendido en Jap\u00f3n. Firmware v05.04 y anteriores de Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw vendido en EE. UU. Firmware v05.04 y anteriores de i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw vendidos en Europa."
}
],
"id": "CVE-2024-12649",
"lastModified": "2026-01-26T15:08:07.860",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "f98c90f0-e9bd-4fa7-911b-51993f3571fd",
"type": "Secondary"
}
]
},
"published": "2025-01-28T01:15:08.823",
"references": [
{
"source": "f98c90f0-e9bd-4fa7-911b-51993f3571fd",
"tags": [
"Vendor Advisory"
],
"url": "https://canon.jp/support/support-info/250127vulnerability-response"
},
{
"source": "f98c90f0-e9bd-4fa7-911b-51993f3571fd",
"tags": [
"Vendor Advisory"
],
"url": "https://psirt.canon/advisory-information/cp2025-001/"
},
{
"source": "f98c90f0-e9bd-4fa7-911b-51993f3571fd",
"tags": [
"Vendor Advisory"
],
"url": "https://www.canon-europe.com/support/product-security/#news"
},
{
"source": "f98c90f0-e9bd-4fa7-911b-51993f3571fd",
"tags": [
"Vendor Advisory"
],
"url": "https://www.usa.canon.com/support/canon-product-advisories/service-notice-regarding-vulnerability-measure-against-buffer-overflow-for-laser-printers-and-small-office-multifunctional-printers"
}
],
"sourceIdentifier": "f98c90f0-e9bd-4fa7-911b-51993f3571fd",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "f98c90f0-e9bd-4fa7-911b-51993f3571fd",
"type": "Secondary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…