CVE-2013-4614

2022-10-0316:14:58

CWE-255

[email protected]

web.nvd.nist.gov

cve-2013-4614

canon printers

wi-fi

psk

passphrase

cleartext

sensitive information

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.1 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.4%

JSON

English/pages_MacUS/wls_set_content.html on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers shows the Wi-Fi PSK passphrase in cleartext, which allows physically proximate attackers to obtain sensitive information by reading the screen of an unattended workstation.

Affected configurations

NVD

Node

canonmg3100_printerMatch-

canonmg5300_printerMatch-

canonmg6100_printerMatch-

canonmp340_printerMatch-

canonmp495_printerMatch-

canonmx870_printerMatch-

canonmx890_printerMatch-

canonmx920_printerMatch-

canonmx922_printerMatch-

CPENameOperatorVersion
canon:mg3100_printercanon mg3100 printereq-
canon:mg5300_printercanon mg5300 printereq-
canon:mg6100_printercanon mg6100 printereq-
canon:mp340_printercanon mp340 printereq-
canon:mp495_printercanon mp495 printereq-
canon:mx870_printercanon mx870 printereq-
canon:mx890_printercanon mx890 printereq-
canon:mx920_printercanon mx920 printereq-
canon:mx922_printercanon mx922 printereq-

CPE	Name	Operator	Version
canon:mg3100_printer	canon mg3100 printer	eq	-
canon:mg5300_printer	canon mg5300 printer	eq	-
canon:mg6100_printer	canon mg6100 printer	eq	-
canon:mp340_printer	canon mp340 printer	eq	-
canon:mp495_printer	canon mp495 printer	eq	-
canon:mx870_printer	canon mx870 printer	eq	-
canon:mx890_printer	canon mx890 printer	eq	-
canon:mx920_printer	canon mx920 printer	eq	-
canon:mx922_printer	canon mx922 printer	eq	-