Lucene search

K
cveF98c90f0-e9bd-4fa7-911b-51993f3571fdCVE-2023-0858
HistoryMay 11, 2023 - 1:15 p.m.

CVE-2023-0858

2023-05-1113:15:13
CWE-284
CWE-287
f98c90f0-e9bd-4fa7-911b-51993f3571fd
web.nvd.nist.gov
13
cve-2023-0858
remoteui
multifunction printers
laser printers
improper authentication
security vulnerability
unauthorized access
firmware
satera lbp660c series
color imageclass lbp660c series
i-sensys lbp660c series

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.2%

Improper Authentication of RemoteUI of Office / Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger unauthorized access to the product. *:Satera LBP660C Series/LBP620C Series/MF740C Series/MF640C Series firmware Ver.11.04 and earlier sold in Japan. Color imageCLASS LBP660C Series/LBP 620C Series/X LBP1127C/MF740C Series/MF640C Series/X MF1127C firmware Ver.11.04 and earlier sold in US. i-SENSYS LBP660C Series/LBP620C Series/MF740C Series/MF640C Series, C1127P, C1127iF, C1127i firmware Ver.11.04 and earlier sold in Europe.

Affected configurations

NVD
Node
canonmf642cdw_firmwareRange11.04
AND
canonmf642cdwMatch-
Node
canonmf644cdw_firmwareRange11.04
AND
canonmf644cdwMatch-
Node
canonmf741cdw_firmwareRange11.04
AND
canonmf741cdwMatch-
Node
canonmf743cdw_firmwareRange11.04
AND
canonmf743cdwMatch-
Node
canonmf745cdw_firmwareRange11.04
AND
canonmf745cdwMatch-
Node
canonlbp621c_firmwareRange11.04
AND
canonlbp621cMatch-
Node
canonlbp622c_firmwareRange11.04
AND
canonlbp622cMatch-
Node
canonlbp661c_firmwareRange11.04
AND
canonlbp661cMatch-
Node
canonlbp662c_firmwareRange11.04
AND
canonlbp662cMatch-
Node
canonlbp664c_firmwareRange11.04
AND
canonlbp664cMatch-
Node
canonmf1127c_firmwareRange11.04
AND
canonmf1127cMatch-
Node
canonmf262dw_ii_firmwareRange11.04
AND
canonmf262dw_iiMatch-
Node
canonmf264dw_ii_firmwareRange11.04
AND
canonmf264dw_iiMatch-
Node
canonmf267dw_ii_firmwareRange11.04
AND
canonmf267dw_iiMatch-
Node
canonmf269dw_ii_firmwareRange11.04
AND
canonmf269dw_iiMatch-
Node
canonmf269dw_vp_ii_firmwareRange11.04
AND
canonmf269dw_vp_iiMatch-
Node
canonmf272dw_firmwareRange11.04
AND
canonmf272dwMatch-
Node
canonmf273dw_firmwareRange11.04
AND
canonmf273dwMatch-
Node
canonmf275dw_firmwareRange11.04
AND
canonmf275dwMatch-
Node
canonmf641cw_firmwareRange11.04
AND
canonmf641cwMatch-
Node
canonmf746cdw_firmwareRange11.04
AND
canonmf746cdwMatch-
Node
canonlbp122dw_firmwareRange11.04
AND
canonlbp122dwMatch-
Node
canonlbp1127c_firmwareRange11.04
AND
canonlbp1127cMatch-
Node
canonlbp622cdw_firmwareRange11.04
AND
canonlbp622cdwMatch-
Node
canonlbp623cdw_firmwareRange11.04
AND
canonlbp623cdwMatch-
Node
canonlbp664cdw_firmwareRange11.04
AND
canonlbp664cdwMatch-
Node
canonimageprograf_tc-20_firmwareRange11.04
AND
canonimageprograf_tc-20Match-
Node
canonimageprograf_tc-20m_firmwareRange11.04
AND
canonimageprograf_tc-20mMatch-
Node
canonpixma_g3270_firmwareRange11.04
AND
canonpixma_g3270Match-
Node
canonpixma_g4270_firmwareRange11.04
AND
canonpixma_g4270Match-
Node
canonmaxify_gx3020_firmwareRange11.04
AND
canonmaxify_gx3020Match-
Node
canonmaxify_gx4020_firmwareRange11.04
AND
canonmaxify_gx4020Match-
Node
canoni-sensys_lbp621cw_firmwareRange11.04
AND
canoni-sensys_lbp621cwMatch-
Node
canoni-sensys_lbp623cdw_firmwareRange11.04
AND
canoni-sensys_lbp623cdwMatch-
Node
canoni-sensys_lbp633cdw_firmwareRange11.04
AND
canoni-sensys_lbp633cdwMatch-
Node
canoni-sensys_lbp664cx_firmwareRange11.04
AND
canoni-sensys_lbp664cxMatch-
Node
canoni-sensys_mf641cw_firmwareRange11.04
AND
canoni-sensys_mf641cwMatch-
Node
canoni-sensys_mf643cdw_firmwareRange11.04
AND
canoni-sensys_mf643cdwMatch-
Node
canoni-sensys_mf645cx_firmwareRange11.04
AND
canoni-sensys_mf645cxMatch-
Node
canoni-sensys_mf742cdw_firmwareRange11.04
AND
canoni-sensys_mf742cdwMatch-
Node
canoni-sensys_mf744cdw_firmwareRange11.04
AND
canoni-sensys_mf744cdwMatch-
Node
canoni-sensys_mf746cx_firmwareRange11.04
AND
canoni-sensys_mf746cxMatch-
Node
canoni-sensys_x_c1127i_firmwareRange11.04
AND
canoni-sensys_x_c1127iMatch-
Node
canoni-sensys_x_c1127if_firmwareRange11.04
AND
canoni-sensys_x_c1127ifMatch-
Node
canoni-sensys_x_c1127p_firmwareRange11.04
AND
canoni-sensys_x_c1127pMatch-

CNA Affected

[
  {
    "vendor": "Canon Inc.",
    "product": "Canon Office/Small Office Multifunction Printers and Laser Printers",
    "versions": [
      {
        "version": "Satera LBP660C Series/LBP620C Series/MF740C Series/MF640C Series firmware Ver.11.04 and earlier sold in Japan. Color imageCLASS LBP660C Series/LBP 620C Series/X LBP1127C/MF740C Series/MF640C Series/X MF1127C firmware Ver.11.04 and earlier sold in US. i-SENSYS LBP660C Series/LBP620C Series/MF740C Series/MF640C Series, C1127P, C1127iF, C1127i firmware Ver.11.04 and earlier sold in Europe.",
        "status": "affected"
      }
    ]
  }
]

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.2%

Related for CVE-2023-0858