Improper Authentication of RemoteUI of Office / Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger unauthorized access to the product. *:Satera LBP660C Series/LBP620C Series/MF740C Series/MF640C Series firmware Ver.11.04 and earlier sold in Japan. Color imageCLASS LBP660C Series/LBP 620C Series/X LBP1127C/MF740C Series/MF640C Series/X MF1127C firmware Ver.11.04 and earlier sold in US. i-SENSYS LBP660C Series/LBP620C Series/MF740C Series/MF640C Series, C1127P, C1127iF, C1127i firmware Ver.11.04 and earlier sold in Europe.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0011.

Exploitation none

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Canon Inc. Canon Office/Small Office Multifunction Printers and Laser Printers affected
Version Status Constraints
Satera LBP660C Series/LBP620C Series/MF740C Series/MF640C Series firmware Ver.11.04 and earlier sold in Japan. Color imageCLASS LBP660C Series/LBP 620C Series/X LBP1127C/MF740C Series/MF640C Series/X MF1127C firmware Ver.11.04 and earlier sold in US. i-SENSYS LBP660C Series/LBP620C Series/MF740C Series/MF640C Series, C1127P, C1127iF, C1127i firmware Ver.11.04 and earlier sold in Europe. affected

Configuration 1 [-]

AND
cpe:2.3:o:canon:mf642cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf642cdw:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:canon:mf644cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf644cdw:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:canon:mf741cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf741cdw:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:canon:mf743cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf743cdw:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:canon:mf745cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf745cdw:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:canon:lbp621c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp621c:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:canon:lbp622c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp622c:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:canon:lbp661c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp661c:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:canon:lbp662c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp662c:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:canon:lbp664c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp664c:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:canon:mf1127c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf1127c:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:canon:mf262dw_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf262dw_ii:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:canon:mf264dw_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf264dw_ii:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:canon:mf267dw_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf267dw_ii:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:canon:mf269dw_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf269dw_ii:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:canon:mf269dw_vp_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf269dw_vp_ii:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:canon:mf272dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf272dw:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:canon:mf273dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf273dw:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:canon:mf275dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf275dw:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND
cpe:2.3:o:canon:mf641cw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf641cw:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND
cpe:2.3:o:canon:mf746cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf746cdw:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND
cpe:2.3:o:canon:lbp122dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp122dw:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND
cpe:2.3:o:canon:lbp1127c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp1127c:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND
cpe:2.3:o:canon:lbp622cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp622cdw:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND
cpe:2.3:o:canon:lbp623cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp623cdw:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND
cpe:2.3:o:canon:lbp664cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp664cdw:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND
cpe:2.3:o:canon:imageprograf_tc-20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:imageprograf_tc-20:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND
cpe:2.3:o:canon:imageprograf_tc-20m_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:imageprograf_tc-20m:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND
cpe:2.3:o:canon:pixma_g3270_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:pixma_g3270:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND
cpe:2.3:o:canon:pixma_g4270_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:pixma_g4270:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND
cpe:2.3:o:canon:maxify_gx3020_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:maxify_gx3020:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND
cpe:2.3:o:canon:maxify_gx4020_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:maxify_gx4020:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND
cpe:2.3:o:canon:i-sensys_lbp621cw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_lbp621cw:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND
cpe:2.3:o:canon:i-sensys_lbp623cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_lbp623cdw:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND
cpe:2.3:o:canon:i-sensys_lbp633cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_lbp633cdw:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND
cpe:2.3:o:canon:i-sensys_lbp664cx_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_lbp664cx:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND
cpe:2.3:o:canon:i-sensys_mf641cw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_mf641cw:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND
cpe:2.3:o:canon:i-sensys_mf643cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_mf643cdw:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND
cpe:2.3:o:canon:i-sensys_mf645cx_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_mf645cx:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND
cpe:2.3:o:canon:i-sensys_mf742cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_mf742cdw:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND
cpe:2.3:o:canon:i-sensys_mf744cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_mf744cdw:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND
cpe:2.3:o:canon:i-sensys_mf746cx_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_mf746cx:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND
cpe:2.3:o:canon:i-sensys_x_c1127i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_x_c1127i:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND
cpe:2.3:o:canon:i-sensys_x_c1127if_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_x_c1127if:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND
cpe:2.3:o:canon:i-sensys_x_c1127p_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:canon:i-sensys_x_c1127p:-:*:*:*:*:*:*:*

No data.

No data.

Project Subscriptions

Vendors Products
Canon Subscribe
I-sensys Lbp621cw Subscribe
I-sensys Lbp621cw Firmware Subscribe
I-sensys Lbp623cdw Subscribe
I-sensys Lbp623cdw Firmware Subscribe
I-sensys Lbp633cdw Subscribe
I-sensys Lbp633cdw Firmware Subscribe
I-sensys Lbp664cx Subscribe
I-sensys Lbp664cx Firmware Subscribe
I-sensys Mf641cw Subscribe
I-sensys Mf641cw Firmware Subscribe
I-sensys Mf643cdw Subscribe
I-sensys Mf643cdw Firmware Subscribe
I-sensys Mf645cx Subscribe
I-sensys Mf645cx Firmware Subscribe
I-sensys Mf742cdw Subscribe
I-sensys Mf742cdw Firmware Subscribe
I-sensys Mf744cdw Subscribe
I-sensys Mf744cdw Firmware Subscribe
I-sensys Mf746cx Subscribe
I-sensys Mf746cx Firmware Subscribe
I-sensys X C1127i Subscribe
I-sensys X C1127i Firmware Subscribe
I-sensys X C1127if Subscribe
I-sensys X C1127if Firmware Subscribe
I-sensys X C1127p Subscribe
I-sensys X C1127p Firmware Subscribe
Imageprograf Tc-20 Subscribe
Imageprograf Tc-20 Firmware Subscribe
Imageprograf Tc-20m Subscribe
Imageprograf Tc-20m Firmware Subscribe
Lbp1127c Subscribe
Lbp1127c Firmware Subscribe
Lbp122dw Subscribe
Lbp122dw Firmware Subscribe
Lbp621c Subscribe
Lbp621c Firmware Subscribe
Lbp622c Subscribe
Lbp622c Firmware Subscribe
Lbp622cdw Subscribe
Lbp622cdw Firmware Subscribe
Lbp623cdw Subscribe
Lbp623cdw Firmware Subscribe
Lbp661c Subscribe
Lbp661c Firmware Subscribe
Lbp662c Subscribe
Lbp662c Firmware Subscribe
Lbp664c Subscribe
Lbp664c Firmware Subscribe
Lbp664cdw Subscribe
Lbp664cdw Firmware Subscribe
Maxify Gx3020 Subscribe
Maxify Gx3020 Firmware Subscribe
Maxify Gx4020 Subscribe
Maxify Gx4020 Firmware Subscribe
Mf1127c Subscribe
Mf1127c Firmware Subscribe
Mf262dw Ii Subscribe
Mf262dw Ii Firmware Subscribe
Mf264dw Ii Subscribe
Mf264dw Ii Firmware Subscribe
Mf267dw Ii Subscribe
Mf267dw Ii Firmware Subscribe
Mf269dw Ii Subscribe
Mf269dw Ii Firmware Subscribe
Mf269dw Vp Ii Subscribe
Mf269dw Vp Ii Firmware Subscribe
Mf272dw Subscribe
Mf272dw Firmware Subscribe
Mf273dw Subscribe
Mf273dw Firmware Subscribe
Mf275dw Subscribe
Mf275dw Firmware Subscribe
Mf641cw Subscribe
Mf641cw Firmware Subscribe
Mf642cdw Subscribe
Mf642cdw Firmware Subscribe
Mf644cdw Subscribe
Mf644cdw Firmware Subscribe
Mf741cdw Subscribe
Mf741cdw Firmware Subscribe
Mf743cdw Subscribe
Mf743cdw Firmware Subscribe
Mf745cdw Subscribe
Mf745cdw Firmware Subscribe
Mf746cdw Subscribe
Mf746cdw Firmware Subscribe
Pixma G3270 Subscribe
Pixma G3270 Firmware Subscribe
Pixma G4270 Subscribe
Pixma G4270 Firmware Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2023-12856 Improper Authentication of RemoteUI of Office / Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger unauthorized access to the product. *:Satera LBP660C Series/LBP620C Series/MF740C Series/MF640C Series firmware Ver.11.04 and earlier sold in Japan. Color imageCLASS LBP660C Series/LBP 620C Series/X LBP1127C/MF740C Series/MF640C Series/X MF1127C firmware Ver.11.04 and earlier sold in US. i-SENSYS LBP660C Series/LBP620C Series/MF740C Series/MF640C Series, C1127P, C1127iF, C1127i firmware Ver.11.04 and earlier sold in Europe.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://canon.jp/support/support-info/230414vulnerability-response cve-icon cve-icon
https://psirt.canon/advisory-information/cp2023-001/ cve-icon cve-icon
https://www.canon-europe.com/support/product-security-latest-news/ cve-icon cve-icon
https://www.usa.canon.com/support/canon-product-advisories/Service-Notice-Vulnerabilities-Remediation-Against-Buffer-Overflow cve-icon cve-icon
History

Fri, 24 Jan 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Canon

Published:

Updated: 2025-01-24T21:11:04.107Z

Reserved: 2023-02-16T00:00:00.000Z

Link: CVE-2023-0858

cve-icon Vulnrichment

Updated: 2024-08-02T05:24:34.695Z

cve-icon NVD

Status : Modified

Published: 2023-05-11T13:15:13.177

Modified: 2024-11-21T07:37:58.980

Link: CVE-2023-0858

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses