Lbp1238 Ii Firmware
CVE-2024-12648
CRITICAL
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
2DescriptionCVE.org
Buffer overflow in TIFF data EXIF tag processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe.
AnalysisAI
Buffer overflow in TIFF data EXIF tag processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified as Out-of-bounds Write (CWE-787), which allows attackers to write data beyond allocated buffer boundaries leading to code execution or crashes. Buffer overflow in TIFF data EXIF tag processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe. Affected products include: Canon Mf455Dw Firmware, Canon Mf453Dw Firmware, Canon Mf452Dw Firmware, Canon Mf451Dw Firmware, Canon Mf465Dw Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Validate write boundaries, use memory-safe languages, enable compiler protections (ASLR, stack canaries).
More in Lbp1238 Ii Firmware
View allCanon printers contain an invalid free vulnerability in CPCA file deletion processing that allows network-based attacker
Canon printers contain a buffer overflow in XPS font parsing that allows remote code execution through crafted print job
Canon Multifunction Printers have a buffer overflow in Address Book attribute tag processing that allows remote attacker
Canon printers contain a buffer overflow in XPS font fpgm table processing, enabling remote code execution when processi
Canon printers have a buffer overflow in CPCA list processing that allows remote attackers to execute arbitrary code thr
Canon printers have a buffer overflow in XML processing of XPS files that allows network-adjacent attackers to execute a
Canon Small Office Multifunction Printers and Laser Printers are vulnerable to a buffer overflow in WSD print job proces
Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow
Buffer overflow in CPCA font download processing of Small Office Multifunction Printers and Laser Printers(*) which may
Same weakness CWE-787 – Out-of-bounds Write
View allShare
External POC / Exploit Code
Leaving vuln.today