CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

9.8CVSS8.9AI score0.01277EPSS

多款Canon产品缓冲区错误漏洞

Canon imageCLASS MF644Cdw is a smart and efficient 3-in-1 color multifunctional printer from Canon Japan. A security vulnerability exists in Canon Laser Printer, Inkjet Printer, and Small Office Multifunctional Printers, which stems from the presence of a buffer overflow that allows an attacker t...

9.8CVSS8.9AI score0.02554EPSS

多款Canon产品缓冲区错误漏洞

9.8CVSS8.9AI score0.01206EPSS

多款Canon产品缓冲区错误漏洞

CNNVD•added 2023/05/11 12:0 a.m.•2 views

多款Canon产品安全漏洞

Canon imageCLASS MF644Cdw is a smart and efficient 3-in-1 color multifunction printer from Canon Japan. A security vulnerability exists in Canon Laser Printer, Inkjet Printer, and Small Office Multifunctional Printers that originates from the ability to install arbitrary files in the Setup Data...

5.3CVSS5.9AI score0.00291EPSS

9.8CVSS8.9AI score0.00512EPSS

多款Canon产品缓冲区错误漏洞

NVD•added 2023/03/29 7:15 p.m.•8 views

CVE-2022-43608

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF644Cdw 10.03 printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the BJNP service. The issue results from the lack of...

8.8CVSS9AI score0.00255EPSS

Cvelist•added 2023/03/29 12:0 a.m.•14 views

CVE-2022-43608

8.8CVSS9.1AI score0.00255EPSS

NVD•added 2023/03/28 7:15 p.m.•23 views

CVE-2022-24674

8.8CVSS8.9AI score0.00622EPSS

NVD•added 2023/03/28 7:15 p.m.•13 views

CVE-2022-24673

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Canon imageCLASS MF644Cdw 10.02 printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the SLP protocol. The issue results from...

9.8CVSS9.2AI score0.06113EPSS

NVD•added 2023/03/28 7:15 p.m.•7 views

CVE-2022-24672

8.8CVSS8.8AI score0.0084EPSS

Cvelist•added 2023/03/28 12:0 a.m.•15 views

CVE-2022-24674

8.8CVSS9AI score0.00622EPSS

Cvelist•added 2023/03/28 12:0 a.m.•16 views

CVE-2022-24672

8.8CVSS8.9AI score0.0084EPSS

CVE•added 2023/03/28 12:0 a.m.•56 views

CVE-2022-24672

The CVE-2022-24672 entry affects Canon imageCLASS MF644Cdw 10.02 printers, via the CADM service. The root cause is improper validation of the length of user-supplied data copied into a fixed-length heap-based buffer, enabling a network-adjacent attacker (no authentication) to execute arbitrary co...

8.8CVSS8.8AI score0.0084EPSS

Exploits0References2Affected Software1

Zero Day Initiative•added 2023/03/01 12:0 a.m.•45 views

(Pwn2Own) Canon imageCLASS MF644Cdw CADM Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF644Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CADM service. The issue results from the lack of proper...

8.8CVSS5.2AI score0.0084EPSS

Exploits0References1

Positive Technologies•added 2023/03/01 12:0 a.m.•2 views

PT-2023-12765 · Canon · Canon Imageclass Mf644Cdw

Name of the Vulnerable Software and Affected Versions: Canon imageCLASS MF644Cdw version 10.02 Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations. Authentication is not required to exploit this issue. The specific flaw exists within the...

8.8CVSS8.9AI score0.0084EPSS

Exploits0References6

Positive Technologies•added 2022/12/15 12:0 a.m.•2 views

PT-2022-26981 · Canon · Canon Imageclass Mf644Cdw

Name of the Vulnerable Software and Affected Versions: Canon imageCLASS MF644Cdw version 10.03 Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations. Authentication is not required to exploit this issue. The specific flaw exists within the...

8.8CVSS9AI score0.00255EPSS

Exploits0References3

Zero Day Initiative•added 2022/12/15 12:0 a.m.•30 views

Canon imageCLASS MF644Cdw BJNP Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF644Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the BJNP service. The issue results from the lack of proper...

8.8CVSS5.3AI score0.00255EPSS

Exploits0References1

CNNVD•added 2022/03/18 12:0 a.m.•2 views

Canon imageCLASS MF644Cdw 10.02 printers 缓冲区错误漏洞

Canon imageCLASS MF644Cdw is an intelligent and efficient 3-in-1 color multifunction printer from Canon Japan. A security vulnerability exists in Canon imageCLASS MF644Cdw 10.02 printers, which originates from a failure to properly validate the length of user-supplied data before copying it to a...

8.8CVSS8.2AI score0.0084EPSS