Skip to main content

Canon Production Printers CVE-2026-1789

| EUVDEUVD-2026-25347 MEDIUM
Reliance on Untrusted Inputs in a Security Decision (CWE-807)
2026-04-24 f98c90f0-e9bd-4fa7-911b-51993f3571fd GHSA-jh49-rh44-24pq
6.9
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
6.9 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
X

Lifecycle Timeline

4
Analysis Generated
Apr 24, 2026 - 00:48 vuln.today
EUVD ID Assigned
Apr 24, 2026 - 00:22 euvd
EUVD-2026-25347
Analysis Generated
Apr 24, 2026 - 00:22 vuln.today
CVE Published
Apr 24, 2026 - 00:16 nvd
MEDIUM 6.9

DescriptionCVE.org

A vulnerability in the browser-based remote management interface may allow an administrator to access sensitive information on the device via crafted requests, affecting certain production printers and office/small office multifunction printers.

AnalysisAI

Information disclosure in Canon production printers and office/small office multifunction printers allows authenticated administrators to access sensitive device information through crafted requests to the browser-based remote management interface. The vulnerability affects multiple printer models and requires high-privilege administrative access; no active exploitation has been confirmed at time of analysis, though the remote network vector and low attack complexity indicate practical exploitability by privileged internal users.

Technical ContextAI

The vulnerability resides in the browser-based remote management web interface used by Canon production printers and multifunction devices. CWE-807 (Reliance on Untrusted Inputs in a Security Decision) indicates the interface fails to properly validate or authenticate crafted requests before disclosing sensitive information-likely device configuration, network settings, credentials, or operational data stored on the printer. The attack vector is network-based (AV:N), suggesting the management interface is accessible over the network; however, exploitation requires high-privilege administrative credentials (PR:H), limiting exposure to authenticated users with legitimate access roles. The vulnerability does not result in integrity or availability impact, only confidentiality breach.

RemediationAI

Canon has released patches for affected printers and multifunction devices; organizations should immediately apply the latest firmware updates available from Canon's security advisory pages (psirt.canon/advisory-information/cp2026-003/ and usa.canon.com). Interim compensating controls include: (1) Restrict network access to the printer's browser-based management interface using network firewalls or access control lists (ACLs) - permit only known administrator IP addresses or subnets, blocking all other network paths to the management port (typically TCP 80/443); (2) Enforce strong authentication and multi-factor authentication (MFA) for administrative accounts that can access the printer's web interface, reducing the likelihood of compromise; (3) Audit and minimize the number of accounts with high-privilege (administrator) access to printer management interfaces, following least-privilege principles; (4) Monitor and log all access to the management interface, alerting on anomalous requests or bulk information retrieval. Apply patches as soon as tested in non-production environments; interim network isolation should be considered until patches are validated and deployed.

Share

CVE-2026-1789 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy