Description
Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe.
Published: 2025-01-28
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2024-51024 Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe.
History

Mon, 26 Jan 2026 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Canon
Canon lbp1238 Ii
Canon lbp1238 Ii Firmware
Canon lbp1440
Canon lbp1440 Firmware
Canon lbp236dw
Canon lbp236dw Firmware
Canon lbp237dw
Canon lbp237dw Firmware
Canon lbp246dw
Canon lbp246dw Firmware
Canon lbp247dw
Canon lbp247dw Firmware
Canon lbp632cdw
Canon lbp632cdw Firmware
Canon lbp633cdw
Canon lbp633cdw Firmware
Canon mf1238 Ii
Canon mf1238 Ii Firmware
Canon mf1440
Canon mf1440 Firmware
Canon mf1643i Ii
Canon mf1643i Ii Firmware
Canon mf1643if Ii
Canon mf1643if Ii Firmware
Canon mf451dw
Canon mf451dw Firmware
Canon mf452dw
Canon mf452dw Firmware
Canon mf453dw
Canon mf453dw Firmware
Canon mf455dw
Canon mf455dw Firmware
Canon mf462dw
Canon mf462dw Firmware
Canon mf465dw
Canon mf465dw Firmware
Canon mf652cw
Canon mf652cw Firmware
Canon mf653cdw
Canon mf653cdw Firmware
Canon mf654cdw
Canon mf654cdw Firmware
Canon mf656cdw
Canon mf656cdw Firmware
CPEs cpe:2.3:h:canon:lbp1238_ii:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp1440:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp236dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp237dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp246dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp247dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp632cdw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:lbp633cdw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf1238_ii:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf1440:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf1643i_ii:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf1643if_ii:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf451dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf452dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf453dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf455dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf462dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf465dw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf652cw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf653cdw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf654cdw:-:*:*:*:*:*:*:*
cpe:2.3:h:canon:mf656cdw:-:*:*:*:*:*:*:*
cpe:2.3:o:canon:lbp1238_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:lbp1440_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:lbp236dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:lbp237dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:lbp246dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:lbp247dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:lbp632cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:lbp633cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf1238_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf1440_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf1643i_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf1643if_ii_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf451dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf452dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf453dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf455dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf462dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf465dw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf652cw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf653cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf654cdw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:canon:mf656cdw_firmware:*:*:*:*:*:*:*:*
Vendors & Products Canon
Canon lbp1238 Ii
Canon lbp1238 Ii Firmware
Canon lbp1440
Canon lbp1440 Firmware
Canon lbp236dw
Canon lbp236dw Firmware
Canon lbp237dw
Canon lbp237dw Firmware
Canon lbp246dw
Canon lbp246dw Firmware
Canon lbp247dw
Canon lbp247dw Firmware
Canon lbp632cdw
Canon lbp632cdw Firmware
Canon lbp633cdw
Canon lbp633cdw Firmware
Canon mf1238 Ii
Canon mf1238 Ii Firmware
Canon mf1440
Canon mf1440 Firmware
Canon mf1643i Ii
Canon mf1643i Ii Firmware
Canon mf1643if Ii
Canon mf1643if Ii Firmware
Canon mf451dw
Canon mf451dw Firmware
Canon mf452dw
Canon mf452dw Firmware
Canon mf453dw
Canon mf453dw Firmware
Canon mf455dw
Canon mf455dw Firmware
Canon mf462dw
Canon mf462dw Firmware
Canon mf465dw
Canon mf465dw Firmware
Canon mf652cw
Canon mf652cw Firmware
Canon mf653cdw
Canon mf653cdw Firmware
Canon mf654cdw
Canon mf654cdw Firmware
Canon mf656cdw
Canon mf656cdw Firmware

Tue, 28 Jan 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 28 Jan 2025 01:00:00 +0000

Type Values Removed Values Added
Description Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe.
Weaknesses CWE-787
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Canon Lbp1238 Ii Lbp1238 Ii Firmware Lbp1440 Lbp1440 Firmware Lbp236dw Lbp236dw Firmware Lbp237dw Lbp237dw Firmware Lbp246dw Lbp246dw Firmware Lbp247dw Lbp247dw Firmware Lbp632cdw Lbp632cdw Firmware Lbp633cdw Lbp633cdw Firmware Mf1238 Ii Mf1238 Ii Firmware Mf1440 Mf1440 Firmware Mf1643i Ii Mf1643i Ii Firmware Mf1643if Ii Mf1643if Ii Firmware Mf451dw Mf451dw Firmware Mf452dw Mf452dw Firmware Mf453dw Mf453dw Firmware Mf455dw Mf455dw Firmware Mf462dw Mf462dw Firmware Mf465dw Mf465dw Firmware Mf652cw Mf652cw Firmware Mf653cdw Mf653cdw Firmware Mf654cdw Mf654cdw Firmware Mf656cdw Mf656cdw Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: Canon

Published:

Updated: 2025-01-28T15:17:20.913Z

Reserved: 2024-12-16T02:42:01.467Z

Link: CVE-2024-12649

cve-icon Vulnrichment

Updated: 2025-01-28T14:47:19.424Z

cve-icon NVD

Status : Analyzed

Published: 2025-01-28T01:15:08.823

Modified: 2026-01-26T15:08:07.860

Link: CVE-2024-12649

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses