JVN#10056705 FTP bounce vulnerability in multiple Canon digital multifunction copiers and laser beam printers

The Canon Color imageRUNNER Series, imageRUNNER Series, imagePRESS Series, and laser beam printer series are digital multifunction copiers and printers. Some of these products contain a vulnerability that could allow a remote attacker to access other network devices via a built-in FTP server.

Impact

A remote attacker could use the FTP server of vulnerable products to conduct port scans against other network devices.

Solution

Change the Setting
Change the setting according to the information provided by the vendor. For more information, refer to the vendor’s website.

Products Affected

This vulnerability affects multiple products. For more information, refer to the Canon’s website.