Canon imageCLASS MF654Cdw TTF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Canon imageCLASS MF654Cdw printers contain a critical vulnerability (CVE-2025-14235) that allows network-adjacent attackers to execute arbitrary code without requiring authentication. Successful exploitation enables attackers to gain complete control of the printer and potentially pivot to connected networks. Security teams should prioritize patching these devices immediately, restrict network access to printers where possible, and monitor for suspicious printer activity, as the high CVSS score of 8.8 indicates significant risk.