Buffer overflow in CPCA list processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigg…

Published:

15 januari 2026 om 23:00:00

Alert date:

16 januari 2026 om 01:13:28

Source:

nvd.nist.gov

Mobile & IoT, Network Infrastructure

CVE-2025-14234 is a buffer overflow vulnerability in CPCA list processing affecting Canon small office multifunction printers and laser printers. The vulnerability affects firmware version 06.02 and earlier across multiple Canon printer series sold in Japan, US, and Europe. An attacker on the network segment can exploit this vulnerability to make the affected product unresponsive or execute arbitrary code. The vulnerability impacts numerous Canon printer models including Satera, imageCLASS, i-SENSYS, and imageRUNNER series. Canon has released security advisories and remediation measures for the affected products.

Technical details

Mitigation steps:

Affected products:

Canon Satera LBP670C Series
Canon Satera MF750C Series
Canon Color imageCLASS LBP630C
Canon Color imageCLASS MF650C Series
Canon imageCLASS LBP230 Series
Canon imageCLASS X LBP1238 II
Canon imageCLASS MF450 Series
Canon imageCLASS X MF1238 II
Canon imageCLASS X MF1643i II
Canon imageCLASS X MF1643iF II
Canon i-SENSYS LBP630C Series
Canon i-SENSYS MF650C Series
Canon i-SENSYS LBP230 Series
Canon 1238P II
Canon 1238Pr II
Canon i-SENSYS MF450 Series
Canon i-SENSYS MF550 Series
Canon 1238i II
Canon 1238iF II
Canon imageRUNNER 1643i II
Canon imageRUNNER 1643iF II