CVE-2025-2146

Severity CVSS v4.0:

Pending analysis

Type:

CWE-787 Out-of-bounds Write

Publication date:

26/05/2025

Last modified:

03/06/2025

Description

Buffer overflow in WebService Authentication processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw/Satera MF551dw/Satera MF457dw firmware v05.07 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw/imageCLASS MF455dw/imageCLASS MF453dw/imageCLASS MF452dw/imageCLASS MF451dw/imageCLASS LBP237dw/imageCLASS LBP236dw/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II/imageCLASS X LBP1238 II firmware v05.07 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw/i-SENSYS MF553dw/i-SENSYS MF552dw/i-SENSYS MF455dw/i-SENSYS MF453dw/i-SENSYS LBP236dw/i-SENSYS LBP233dw/imageRUNNER 1643iF II/imageRUNNER 1643i II/i-SENSYS X 1238iF II/i-SENSYS X 1238i II/i-SENSYS X 1238P II/i-SENSYS X 1238Pr II firmware v05.07 and earlier sold in Europe.

Impact

Vector 3.x

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS v3.1 Severity and Metrics:

Base Score: 9.80 CRITICAL
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): High
Integrity (I): High
Availability (A): High

Base Score 3.x

9.80

Severity 3.x

CRITICAL

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:o:canon:satera_mf656cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:satera_mf656cdw:-:::::::*
cpe:2.3:o:canon:satera_mf654cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:satera_mf654cdw:-:::::::*
cpe:2.3:o:canon:satera_mf551dw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:satera_mf551dw:-:::::::*
cpe:2.3:o:canon:satera_mf457dw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:satera_mf457dw:-:::::::*
cpe:2.3:o:canon:imageclass_mf656cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:imageclass_mf656cdw:-:::::::*
cpe:2.3:o:canon:imageclass_mf654cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:imageclass_mf654cdw:-:::::::*
cpe:2.3:o:canon:imageclass_mf653cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:imageclass_mf653cdw:-:::::::*
cpe:2.3:o:canon:imageclass_mf652cdw_firmware::::::::		05.07 (including)

To consult the complete list of CPE names with products and versions, see this page

CPE	From	Up to
cpe:2.3:o:canon:satera_mf656cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:satera_mf656cdw:-:::::::*
cpe:2.3:o:canon:satera_mf654cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:satera_mf654cdw:-:::::::*
cpe:2.3:o:canon:satera_mf551dw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:satera_mf551dw:-:::::::*
cpe:2.3:o:canon:satera_mf457dw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:satera_mf457dw:-:::::::*
cpe:2.3:o:canon:imageclass_mf656cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:imageclass_mf656cdw:-:::::::*
cpe:2.3:o:canon:imageclass_mf654cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:imageclass_mf654cdw:-:::::::*
cpe:2.3:o:canon:imageclass_mf653cdw_firmware::::::::		05.07 (including)
cpe:2.3:h:canon:imageclass_mf653cdw:-:::::::*
cpe:2.3:o:canon:imageclass_mf652cdw_firmware::::::::		05.07 (including)

CVE-2025-2146

Description

Impact

Vulnerable products and versions

References to Advisories, Solutions, and Tools