Description
Out-of-bounds read vulnerabilities in print processing of Generic Plus PCL6 Printer Driver / Generic Plus UFR II Printer Driver / Generic Plus LIPS4 Printer Driver / Generic Plus LIPSLX Printer Driver / Generic Plus PS Printer Driver / UFRII LT Printer Driver / CARPS2 Printer Driver / Generic FAX Driver / LIPS4 Printer Driver / LIPSLX Printer Driver / UFR II Printer Driver / PS Printer Driver / PCL6 Printer Driver
CVSS breakdown
CVSS 4.0
Attack Vector
Network
Attack Complexity
High
Attack Requirements
Present
Privileges Required
None
User Interaction
Active
Confidentiality (Vulnerable System)
High
Integrity (Vulnerable System)
None
Availability (Vulnerable System)
Low
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
CVSS 3.1
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
Low
Affected products
- Canon Inc. / CARPS2 Printer Driver31.05 and earlier – 31.05 and earlier
- Canon Inc. / Generic FAX Driver10.67 and earlier – 10.67 and earlier
- Canon Inc. / Generic Plus LIPS4 Printer Driver3.30 and earlier – 3.30 and earlier
- Canon Inc. / Generic Plus LIPSLX Printer Driver3.30 and earlier – 3.30 and earlier
- Canon Inc. / Generic Plus PCL6 Printer Driver3.30 and earlier – 3.30 and earlier
- Canon Inc. / Generic Plus PS Printer Driver3.30 and earlier – 3.30 and earlier
- Canon Inc. / Generic Plus UFR II Printer Driver3.30 and earlier – 3.30 and earlier
- Canon Inc. / LIPS4 Printer Driver15.00 and earlier – 15.00 and earlier
- Canon Inc. / LIPSLX Printer Driver15.00 and earlier – 15.00 and earlier
- Canon Inc. / PCL6 Printer Driver15.00 and earlier – 15.00 and earlier
- Canon Inc. / PS Printer Driver15.00 and earlier – 15.00 and earlier
- Canon Inc. / UFRII LT Printer Driver31.05 and earlier – 31.05 and earlier
- Canon Inc. / UFR II Printer Driver15.00 and earlier – 15.00 and earlier
References
- VENDOR_ADVISORYhttps://psirt.canon/advisory-information/cp2025-005/
- MISChttps://canon.jp/support/support-info/250925vulnerability-response
- MISChttps://www.usa.canon.com/about-us/to-our-customers/cp2025-005-vulnerabilities-remediation-for-certain-printer-drivers-for-production-printers-office-small-office-multifunction-printers-laser-printers
- MISChttps://www.canon-europe.com/support/product-security/