Skip to main content

Canon EOS Network Setting Tool EUVDEUVD-2026-37022

| CVE-2026-9262 HIGH
Initialization of a Resource with an Insecure Default (CWE-1188)
2026-06-16 f98c90f0-e9bd-4fa7-911b-51993f3571fd GHSA-hpfm-h576-jwmh
7.1
CVSS 4.0 · Vendor: f98c90f0-e9bd-4fa7-911b-51993f3571fd
Share

Severity by source

Vendor (f98c90f0-e9bd-4fa7-911b-51993f3571fd) PRIMARY
7.1 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
6.5 MEDIUM

Network-observable cleartext FTP with no auth needed by the attacker, but the victim must actually perform an FTP upload (UI:R); only confidentiality of credentials and images is impacted.

3.1 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
4.0 AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (f98c90f0-e9bd-4fa7-911b-51993f3571fd).

CVSS VectorVendor: f98c90f0-e9bd-4fa7-911b-51993f3571fd

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
P
Scope
X

Lifecycle Timeline

1
Analysis Generated
Jun 16, 2026 - 00:28 vuln.today

DescriptionCVE.org

Use of a non-secure protocol as the default FTP configuration in Canon EOS Network Setting Tool Version 1.5.0 or earlier

AnalysisAI

Information disclosure in Canon EOS Network Setting Tool version 1.5.0 and earlier stems from an insecure default FTP configuration that transmits credentials and image data in cleartext over the network. Remote attackers positioned on the network path can intercept the unencrypted FTP traffic to capture authentication material and uploaded photographs. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Position on shared network path
Delivery
Wait for photographer to upload
Exploit
Sniff cleartext FTP session
Execution
Capture credentials and image payloads
Impact
Reuse credentials against FTP server

Vulnerability AssessmentAI

Exploitation Exploitation requires the victim to actively use the FTP upload feature configured by Canon EOS Network Setting Tool 1.5.0 or earlier with its default (plaintext FTP) protocol selection - this maps to the UI:P (passive user interaction) component of the CVSS vector. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 vector (AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N) describes a network-reachable, low-complexity, unauthenticated flaw with high confidentiality impact and no integrity or availability impact, requiring passive user interaction (the photographer actually using the FTP upload feature). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A photographer at a press event uses Canon EOS Network Setting Tool defaults to upload images via FTP to a publishing server over conference Wi-Fi. An attacker on the same wireless segment runs a passive sniffer (e.g., Wireshark with an ftp filter) and captures the FTP USER/PASS exchange in cleartext together with the JPEG payloads, gaining both server credentials and embargoed imagery without any active exploitation of the camera or tool.
Remediation Patch status from the available data is ambiguous: no exact fix version was provided in the input, so treat this as 'patch available per vendor advisory' and consult Canon PSIRT advisory CP2026-005 (https://psirt.canon/advisory-information/cp2026-005/) along with the regional Canon support pages for an updated version of the EOS Network Setting Tool and instructions. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all Canon EOS Network Setting Tool 1.5.0 and earlier installations; restrict usage to air-gapped networks only. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-37022 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy