Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-2146

Buffer overflow in WebService Authentication processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw/Satera MF551dw/Satera MF457dw firmware v05.07 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw/imageCLASS MF455dw/imageCLASS MF453dw/imageCLASS MF452dw/imageCLASS MF451dw/imageCLASS LBP237dw/imageCLASS LBP236dw/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II/imageCLASS X LBP1238 II firmware v05.07 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw/i-SENSYS MF553dw/i-SENSYS MF552dw/i-SENSYS MF455dw/i-SENSYS MF453dw/i-SENSYS LBP236dw/i-SENSYS LBP233dw/imageRUNNER 1643iF II/imageRUNNER 1643i II/i-SENSYS X 1238iF II/i-SENSYS X 1238i II/i-SENSYS X 1238P II/i-SENSYS X 1238Pr II firmware v05.07 and earlier sold in Europe.

Security Impact Summary

This vulnerability carries a CRITICAL severity rating with a CVSS v3.1 score of 9.8, indicating it can be exploited remotely over the network with relatively low complexity without requiring user interaction and does not require pre-existing privileges . The vulnerability impacts confidentiality (data exposure), integrity (unauthorized modifications), and availability (service disruption) for affected systems. Impacting 74 products from canon, from canon, from canon and 71 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Reported in 2025, this vulnerability emerged during an era marked by increased sophistication in supply chain attacks, cloud infrastructure vulnerabilities, and software-as-a-service (SaaS) security challenges. Security practices during this period emphasized zero-trust architectures, container security, and API protection.

Published

2025-05-26T00:15:19.900

Last Modified

2025-06-03T15:49:50.793

Status

Analyzed

Source

f98c90f0-e9bd-4fa7-911b-51993f3571fd

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-787
Type: Primary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	canon	satera_mf656cdw_firmware	≤ 05.07	Yes
Hardware	canon	satera_mf656cdw	-	No
Operating System	canon	satera_mf654cdw_firmware	≤ 05.07	Yes
Hardware	canon	satera_mf654cdw	-	No
Operating System	canon	satera_mf551dw_firmware	≤ 05.07	Yes
Hardware	canon	satera_mf551dw	-	No
Operating System	canon	satera_mf457dw_firmware	≤ 05.07	Yes
Hardware	canon	satera_mf457dw	-	No
Operating System	canon	imageclass_mf656cdw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_mf656cdw	-	No
Operating System	canon	imageclass_mf654cdw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_mf654cdw	-	No
Operating System	canon	imageclass_mf653cdw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_mf653cdw	-	No
Operating System	canon	imageclass_mf652cdw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_mf652cdw	-	No
Operating System	canon	imageclass_lbp633cdw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_lbp633cdw	-	No
Operating System	canon	imageclass_lbp632cdw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_lbp632cdw	-	No
Operating System	canon	imageclass_mf455dw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_mf455dw	-	No
Operating System	canon	imageclass_mf453dw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_mf453dw	-	No
Operating System	canon	imageclass_mf452dw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_mf452dw	-	No
Operating System	canon	imageclass_mf451dw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_mf451dw	-	No
Operating System	canon	imageclass_lbp237dw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_lbp237dw	-	No
Operating System	canon	imageclass_lbp236dw_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_lbp236dw	-	No
Operating System	canon	imageclass_x_mf1238_ii_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_x_mf1238_ii	-	No
Operating System	canon	imageclass_x_mf1643i_ii_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_x_mf1643i_ii	-	No
Operating System	canon	imageclass_x_mf1643if_ii_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_x_mf1643if_ii	-	No
Operating System	canon	imageclass_x_lbp1238_ii_firmware	≤ 05.07	Yes
Hardware	canon	imageclass_x_lbp1238_ii	-	No
Operating System	canon	i-sensys_mf657cdw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_mf657cdw	-	No
Operating System	canon	i-sensys_mf655cdw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_mf655cdw	-	No
Operating System	canon	i-sensys_mf651cdw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_mf651cdw	-	No
Operating System	canon	i-sensys_lbp633cdw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_lbp633cdw	-	No
Operating System	canon	i-sensys_lbp631cdw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_lbp631cdw	-	No
Operating System	canon	i-sensys_mf553dw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_mf553dw	-	No
Operating System	canon	i-sensys_mf552dw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_mf552dw	-	No
Operating System	canon	i-sensys_mf455dw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_mf455dw	-	No
Operating System	canon	i-sensys_mf453dw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_mf453dw	-	No
Operating System	canon	i-sensys_lbp236dw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_lbp236dw	-	No
Operating System	canon	i-sensys_lbp233dw_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_lbp233dw	-	No
Operating System	canon	imagerunner_1643if_ii_firmware	≤ 05.07	Yes
Hardware	canon	imagerunner_1643if_ii	-	No
Operating System	canon	imagerunner_1643i_ii_firmware	≤ 05.07	Yes
Hardware	canon	imagerunner_1643i_ii	-	No
Operating System	canon	i-sensys_x_1238if_ii_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_x_1238if_ii	-	No
Operating System	canon	i-sensys_x_1238i_ii_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_x_1238i_ii	-	No
Operating System	canon	i-sensys_x_1238p_ii_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_x_1238p_ii	-	No
Operating System	canon	i-sensys_x_1238pr_ii_firmware	≤ 05.07	Yes
Hardware	canon	i-sensys_x_1238pr_ii	-	No

References

https://canon.jp/support/support-info/250127vulnerability-response Vendor Advisory (f98c90f0-e9bd-4fa7-911b-51993f3571fd)
https://psirt.canon/advisory-information/cp2025-001/ Vendor Advisory (f98c90f0-e9bd-4fa7-911b-51993f3571fd)
https://www.canon-europe.com/support/product-security/#news Vendor Advisory (f98c90f0-e9bd-4fa7-911b-51993f3571fd)
https://www.usa.canon.com/support/canon-product-advisories/service-notice-regarding-vulnerability-measure-against-buffer-overflow-for-laser-printers-and-small-office-multifunctional-printers Vendor Advisory (f98c90f0-e9bd-4fa7-911b-51993f3571fd)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For canon's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.