CNNVD-202601-2853 Information

Jan 16, 2026 cve

CNNVD ID

CNNVD-202601-2853

CVE-2025-14232

  • CNNVD Published: 2026-01-16

Description (Chinese)

Canon ImageRunner等都是日本佳能(Canon)公司的产品。Canon ImageRunner是一系列一体式黑白打印机。Canon imagePROGRAF是一款大幅面打印机。Canon imageCLASS MF644Cdw是一个智能高效的 3 合 1 彩色多功能打印机。 Canon多款产品存在安全漏洞,该漏洞源于XPS文件的XML处理存在缓冲区溢出,可能导致网络攻击者触发产品无响应或执行任意代码。以下产品及版本受到影响:Satera LBP670C Series v06.02及之前版本、Satera MF750C Series v06.02及之前版本、Color imageCLASS LBP630C v06.02及之前版本、Color imageCLASS MF650C Series v06.02及之前版本、imageCLASS LBP230 Series v06.02及之前版本、imageCLASS X LBP1238 II v06.02及之前版本、imageCLASS MF450 Series v06.02及之前版本、imageCLASS X MF1238 II v06.02及之前版本、imageCLASS X MF1643i II v06.02及之前版本、imageCLASS X MF1643iF II v06.02及之前版本、i-SENSYS LBP630C Series v06.02及之前版本、i-SENSYS MF650C Series v06.02及之前版本、i-SENSYS LBP230 Series v06.02及之前版本、1238P II v06.02及之前版本、1238Pr II v06.02及之前版本、i-SENSYS MF450 Series v06.02及之前版本、i-SENSYS MF550 Series v06.02及之前版本、1238i II v06.02及之前版本、1238iF II v06.02及之前版本、imageRUNNER 1643i II v06.02及之前版本和imageRUNNER 1643iF II v06.02及之前版本。

Description (English)

Canon ImageRunner and others are products of Canon. Canon ImageRunner is a series of integrated black and white printers. Canon imagePROGRAF is a large-scale printer. Canon ImageCLASS MF644Cdw is an intelligent and efficient 3-to-1 colour multifunctional printer. There is a safety loophole in the Canon multi-products, which stems from XML processing of a buffer zone spill in the XPS document, which could trigger a failure of response or enforcement of arbitrary codes by cyber assailants. The following products and versions have been affected: prior to and earlier versions of Satera LP670C Series v06.02, prior and earlier versions of Satera MF75C v.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

佳能

Published

2026-01-16

Last Modified

2026-02-24

References

https://canon.jp/support/support-info/260115vulnerability-response https://psirt.canon/advisory-information/cp2026-001/ https://www.canon-europe.com/support/product-security/ https://www.usa.canon.com/support/canon-product-advisories/Service-Notice-Regarding-Remediation-Measure-Against-Potential-Buffer-Overflow-Vulnerability-in-Laser-Printers-and-Small-Office-Multifunctional-Printers

Patch

https://canon.jp/support/support-info/260115vulnerability-response

Share on: