CVE-2025-2146
Description
Buffer overflow in WebService Authentication processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw/Satera MF551dw/Satera MF457dw firmware v05.07 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw/imageCLASS MF455dw/imageCLASS MF453dw/imageCLASS MF452dw/imageCLASS MF451dw/imageCLASS LBP237dw/imageCLASS LBP236dw/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II/imageCLASS X LBP1238 II firmware v05.07 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw/i-SENSYS MF553dw/i-SENSYS MF552dw/i-SENSYS MF455dw/i-SENSYS MF453dw/i-SENSYS LBP236dw/i-SENSYS LBP233dw/imageRUNNER 1643iF II/imageRUNNER 1643i II/i-SENSYS X 1238iF II/i-SENSYS X 1238i II/i-SENSYS X 1238P II/i-SENSYS X 1238Pr II firmware v05.07 and earlier sold in Europe.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
40- Range: <= v05.07
- Range: <= v05.07
- Range: <= v05.07
- Canon Inc./Color imageCLASS LBP632Cdwv5Range: 05.07 and earlier
- Canon Inc./Color imageCLASS LBP633Cdwv5Range: 05.07 and earlier
- Canon Inc./Color imageCLASS MF652Cdwv5Range: 05.07 and earlier
- Canon Inc./Color imageCLASS MF653Cdwv5Range: 05.07 and earlier
- Canon Inc./Color imageCLASS MF654Cdwv5Range: 05.07 and earlier
- Canon Inc./Color imageCLASS MF656Cdwv5Range: 05.07 and earlier
- Canon Inc./imageCLASS LBP236dwv5Range: 05.07 and earlier
- Canon Inc./imageCLASS LBP237dwv5Range: 05.07 and earlier
- Canon Inc./imageCLASS MF451dwv5Range: 05.07 and earlier
- Canon Inc./imageCLASS MF452dwv5Range: 05.07 and earlier
- Canon Inc./imageCLASS MF453dwv5Range: 05.07 and earlier
- Canon Inc./imageCLASS MF455dwv5Range: 05.07 and earlier
- Canon Inc./imageCLASS X LBP1238 IIv5Range: 05.07 and earlier
- Canon Inc./imageCLASS X MF1238 IIv5Range: 05.07 and earlier
- Canon Inc./imageCLASS X MF1643iF IIv5Range: 05.07 and earlier
- Canon Inc./imageCLASS X MF1643i IIv5Range: 05.07 and earlier
- Canon Inc./imageRUNNER 1643iF IIv5Range: 05.07 and earlier
- Canon Inc./imageRUNNER 1643i IIv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS LBP233dwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS LBP236dwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS LBP631Cdwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS LBP633Cdwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS MF453dwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS MF455dwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS MF552dwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS MF553dwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS MF651Cdwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS MF655Cdwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS MF657Cdwv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS X 1238iF IIv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS X 1238i IIv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS X 1238P IIv5Range: 05.07 and earlier
- Canon Inc./i-SENSYS X 1238Pr IIv5Range: 05.07 and earlier
- Canon Inc./Satera MF457dwv5Range: 05.07 and earlier
- Canon Inc./Satera MF551dwv5Range: 05.07 and earlier
- Canon Inc./Satera MF654Cdwv5Range: 05.07 and earlier
- Canon Inc./Satera MF656Cdwv5Range: 05.07 and earlier
Patches
Vulnerability mechanics
References
4- canon.jp/support/support-info/250127vulnerability-responsemitrevendor-advisory
- psirt.canon/advisory-information/cp2025-001/mitrevendor-advisory
- www.canon-europe.com/support/product-security/mitrevendor-advisory
- www.usa.canon.com/support/canon-product-advisories/service-notice-regarding-vulnerability-measure-against-buffer-overflow-for-laser-printers-and-small-office-multifunctional-printersmitrevendor-advisory
News mentions
0No linked articles in our index yet.