CVE-2023-0859
First published: Thu May 11 2023(Updated: )
Arbitrary Files can be installed in the Setting Data Import function of Office / Small Office Multifunction Printers and Laser Printers(*). *:Satera LBP660C Series/LBP620C Series/MF740C Series/MF640C Series firmware Ver.11.04 and earlier sold in Japan. Color imageCLASS LBP660C Series/LBP 620C Series/X LBP1127C/MF740C Series/MF640C Series/X MF1127C firmware Ver.11.04 and earlier sold in US. i-SENSYS LBP660C Series/LBP620C Series/MF740C Series/MF640C Series, C1127P, C1127iF, C1127i firmware Ver.11.04 and earlier sold in Europe.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Canon MF642Cdw | <=11.04 | |
| Canon MF642Cdw Firmware | ||
| Canon MF644Cdw Firmware | <=11.04 | |
| Canon imageCLASS MF644Cdw | ||
| Canon MF741Cdw Firmware | <=11.04 | |
| Canon MF741CDW | ||
| Canon MF743Cdw Firmware | <=11.04 | |
| Canon MF743Cdw Firmware | ||
| Canon MF745Cdw Firmware | <=11.04 | |
| Canon MF745Cdw Firmware | ||
| Canon LBP621C Firmware | <=11.04 | |
| Canon LBP621C Firmware | ||
| Canon LBP622Cdw | <=11.04 | |
| Canon LBP622C Firmware | ||
| Canon LBP661C Firmware | <=11.04 | |
| Canon LBP661C Firmware | ||
| Canon LBP662C Firmware | <=11.04 | |
| Canon LBP662C Firmware | ||
| Canon LBP664C Firmware | <=11.04 | |
| Canon LBP664C Firmware | ||
| Canon MF1127C Firmware | <=11.04 | |
| Canon MF1127C Firmware | ||
| Canon MF262dw II Firmware | <=11.04 | |
| Canon MF262dw II Firmware | ||
| Canon MF264dw II Firmware | <=11.04 | |
| Canon MF264dw II | ||
| Canon MF267dw II Firmware | <=11.04 | |
| Canon MF267dw II Firmware | ||
| Canon MF269dw II | <=11.04 | |
| Canon MF269dw II | ||
| Canon MF269dw VP II Firmware | <=11.04 | |
| Canon MF269dw VP II Firmware | ||
| Canon MF272dw Firmware | <=11.04 | |
| Canon MF272dw Firmware | ||
| Canon MF273dw Firmware | <=11.04 | |
| Canon MF273dw Firmware | ||
| Canon MF275dw Firmware | <=11.04 | |
| Canon MF275dw Firmware | ||
| Canon MF641CW Firmware | <=11.04 | |
| Canon MF641CW Firmware | ||
| Canon MF746Cdw | <=11.04 | |
| Canon MF746Cdw | ||
| Canon LBP122dw Firmware | <=11.04 | |
| Canon LBP122dw Firmware | ||
| Canon LBP1127C | <=11.04 | |
| Canon LBP1127C | ||
| Canon LBP622Cdw | <=11.04 | |
| Canon Color imageCLASS LBP622Cdw | ||
| Canon LBP623CDW Firmware | <=11.04 | |
| Canon LBP623CDW Firmware | ||
| Canon LBP664CDW Firmware | <=11.04 | |
| Canon LBP664CDW Firmware | ||
| Canon imagePROGRAF TC-20 | <=11.04 | |
| Canon imagePROGRAF TC-20 | ||
| Canon imagePROGRAF TC-20M | <=11.04 | |
| Canon imagePROGRAF TC-20M | ||
| Canon Pixma G3270 Firmware | <=11.04 | |
| Canon Pixma G3270 Firmware | ||
| Canon Pixma G4270 | <=11.04 | |
| Canon Pixma G4270 Firmware | ||
| Canon Maxify GX3020 | <=11.04 | |
| Canon Maxify GX3020 | ||
| Canon Maxify GX4020 Firmware | <=11.04 | |
| Canon Maxify GX4020 Firmware | ||
| Canon i-SENSYS LBP621CW Firmware | <=11.04 | |
| Canon i-SENSYS LBP621CW Firmware | ||
| Canon i-SENSYS | <=11.04 | |
| Canon i-SENSYS LBP623Cdw Firmware | ||
| Canon i-SENSYS LBP633Cdw | <=11.04 | |
| canon Color imageCLASS LBP633Cdw | ||
| Canon i-SENSYS LBP664Cx | <=11.04 | |
| Canon i-SENSYS LBP664Cx Firmware | ||
| Canon i-SENSYS MF641CW | <=11.04 | |
| Canon i-SENSYS MF641CW Firmware | ||
| Canon i-SENSYS MF643Cdw Firmware | <=11.04 | |
| Canon i-SENSYS MF643Cdw Firmware | ||
| Canon i-SENSYS MF645Cx | <=11.04 | |
| Canon i-SENSYS MF645Cx | ||
| Canon i-SENSYS MF742CDW | <=11.04 | |
| Canon i-SENSYS MF742CDW | ||
| Canon i-SENSYS MF744Cdw | <=11.04 | |
| Canon i-SENSYS MF744Cdw | ||
| Canon i-SENSYS MF746Cx Firmware | <=11.04 | |
| Canon i-SENSYS MF746Cx Firmware | ||
| Canon i-SENSYS X C1127i | <=11.04 | |
| Canon i-SENSYS C1127i | ||
| Canon i-SENSYS X C1127i firmware | <=11.04 | |
| Canon i-SENSYS X C1127i | ||
| Canon i-SENSYS C1127P | <=11.04 | |
| Canon i-SENSYS X C1127P firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://canon.jp/support/support-info/230414vulnerability-response
- https://psirt.canon/advisory-information/cp2023-001/
- https://www.canon-europe.com/support/product-security-latest-news/
- https://www.usa.canon.com/support/canon-product-advisories/Service-Notice-Vulnerabilities-Remediation-Against-Buffer-Overflow
Frequently Asked Questions
What is the severity of CVE-2023-0859?
CVE-2023-0859 has been classified with a moderate severity due to the potential for arbitrary file installation through the affected printers' firmware.
How do I fix CVE-2023-0859?
To mitigate CVE-2023-0859, upgrade your printer firmware to version 11.05 or later, as this version addresses the vulnerability.
What products are affected by CVE-2023-0859?
CVE-2023-0859 affects various Canon multifunction printers and laser printers, particularly those with firmware version 11.04 or earlier.
Can CVE-2023-0859 be exploited remotely?
Yes, CVE-2023-0859 can be exploited remotely by an attacker who can send malicious files to the vulnerable printers.
Is there a workaround for CVE-2023-0859?
While upgrading firmware is the best solution, temporarily disabling the remote data import feature may serve as a workaround until the update can be applied.
- agent/references
- agent/type
- agent/author
- agent/severity
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/canon
- canonical/canon mf642cdw
- version/canon mf642cdw/11.04
- canonical/canon mf642cdw firmware
- canonical/canon mf644cdw firmware
- version/canon mf644cdw firmware/11.04
- canonical/canon imageclass mf644cdw
- canonical/canon mf741cdw firmware
- version/canon mf741cdw firmware/11.04
- canonical/canon mf741cdw
- canonical/canon mf743cdw firmware
- version/canon mf743cdw firmware/11.04
- canonical/canon mf745cdw firmware
- version/canon mf745cdw firmware/11.04
- canonical/canon lbp621c firmware
- version/canon lbp621c firmware/11.04
- canonical/canon lbp622cdw
- version/canon lbp622cdw/11.04
- canonical/canon lbp622c firmware
- canonical/canon lbp661c firmware
- version/canon lbp661c firmware/11.04
- canonical/canon lbp662c firmware
- version/canon lbp662c firmware/11.04
- canonical/canon lbp664c firmware
- version/canon lbp664c firmware/11.04
- canonical/canon mf1127c firmware
- version/canon mf1127c firmware/11.04
- canonical/canon mf262dw ii firmware
- version/canon mf262dw ii firmware/11.04
- canonical/canon mf264dw ii firmware
- version/canon mf264dw ii firmware/11.04
- canonical/canon mf264dw ii
- canonical/canon mf267dw ii firmware
- version/canon mf267dw ii firmware/11.04
- canonical/canon mf269dw ii
- version/canon mf269dw ii/11.04
- canonical/canon mf269dw vp ii firmware
- version/canon mf269dw vp ii firmware/11.04
- canonical/canon mf272dw firmware
- version/canon mf272dw firmware/11.04
- canonical/canon mf273dw firmware
- version/canon mf273dw firmware/11.04
- canonical/canon mf275dw firmware
- version/canon mf275dw firmware/11.04
- canonical/canon mf641cw firmware
- version/canon mf641cw firmware/11.04
- canonical/canon mf746cdw
- version/canon mf746cdw/11.04
- canonical/canon lbp122dw firmware
- version/canon lbp122dw firmware/11.04
- canonical/canon lbp1127c
- version/canon lbp1127c/11.04
- canonical/canon color imageclass lbp622cdw
- canonical/canon lbp623cdw firmware
- version/canon lbp623cdw firmware/11.04
- canonical/canon lbp664cdw firmware
- version/canon lbp664cdw firmware/11.04
- canonical/canon imageprograf tc-20
- version/canon imageprograf tc-20/11.04
- canonical/canon imageprograf tc-20m
- version/canon imageprograf tc-20m/11.04
- canonical/canon pixma g3270 firmware
- version/canon pixma g3270 firmware/11.04
- canonical/canon pixma g4270
- version/canon pixma g4270/11.04
- canonical/canon pixma g4270 firmware
- canonical/canon maxify gx3020
- version/canon maxify gx3020/11.04
- canonical/canon maxify gx4020 firmware
- version/canon maxify gx4020 firmware/11.04
- canonical/canon i-sensys lbp621cw firmware
- version/canon i-sensys lbp621cw firmware/11.04
- canonical/canon i-sensys
- version/canon i-sensys/11.04
- canonical/canon i-sensys lbp623cdw firmware
- canonical/canon i-sensys lbp633cdw
- version/canon i-sensys lbp633cdw/11.04
- canonical/canon color imageclass lbp633cdw
- canonical/canon i-sensys lbp664cx
- version/canon i-sensys lbp664cx/11.04
- canonical/canon i-sensys lbp664cx firmware
- canonical/canon i-sensys mf641cw
- version/canon i-sensys mf641cw/11.04
- canonical/canon i-sensys mf641cw firmware
- canonical/canon i-sensys mf643cdw firmware
- version/canon i-sensys mf643cdw firmware/11.04
- canonical/canon i-sensys mf645cx
- version/canon i-sensys mf645cx/11.04
- canonical/canon i-sensys mf742cdw
- version/canon i-sensys mf742cdw/11.04
- canonical/canon i-sensys mf744cdw
- version/canon i-sensys mf744cdw/11.04
- canonical/canon i-sensys mf746cx firmware
- version/canon i-sensys mf746cx firmware/11.04
- canonical/canon i-sensys x c1127i
- version/canon i-sensys x c1127i/11.04
- canonical/canon i-sensys c1127i
- canonical/canon i-sensys x c1127i firmware
- version/canon i-sensys x c1127i firmware/11.04
- canonical/canon i-sensys c1127p
- version/canon i-sensys c1127p/11.04
- canonical/canon i-sensys x c1127p firmware