Strix
26.1K

CVE-2025-2146

CRITICALCVSS 9.8/10EPSS 0.73%

Last modified

CVE-2025-2146 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Buffer overflow in WebService Authentication processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw/Satera MF551dw/Satera MF457dw firmware v05.07 and earlier sold in Japan. EPSS estimates a 0.73% chance of exploitation in the next 30 days.

Description

Buffer overflow in WebService Authentication processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw/Satera MF551dw/Satera MF457dw firmware v05.07 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw/imageCLASS MF455dw/imageCLASS MF453dw/imageCLASS MF452dw/imageCLASS MF451dw/imageCLASS LBP237dw/imageCLASS LBP236dw/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II/imageCLASS X LBP1238 II firmware v05.07 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw/i-SENSYS MF553dw/i-SENSYS MF552dw/i-SENSYS MF455dw/i-SENSYS MF453dw/i-SENSYS LBP236dw/i-SENSYS LBP233dw/imageRUNNER 1643iF II/imageRUNNER 1643i II/i-SENSYS X 1238iF II/i-SENSYS X 1238i II/i-SENSYS X 1238P II/i-SENSYS X 1238Pr II firmware v05.07 and earlier sold in Europe.

Metrics

CVSS 3.1
9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
0.73%

49.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CanonSatera Mf656cdw Firmware<= 05.07
CanonSatera Mf654cdw Firmware<= 05.07
CanonSatera Mf551dw Firmware<= 05.07
CanonSatera Mf457dw Firmware<= 05.07
CanonImageclass Mf656cdw Firmware<= 05.07
CanonImageclass Mf654cdw Firmware<= 05.07
CanonImageclass Mf653cdw Firmware<= 05.07
CanonImageclass Mf652cdw Firmware<= 05.07
CanonImageclass Lbp633cdw Firmware<= 05.07
CanonImageclass Lbp632cdw Firmware<= 05.07
CanonImageclass Mf455dw Firmware<= 05.07
CanonImageclass Mf453dw Firmware<= 05.07
CanonImageclass Mf452dw Firmware<= 05.07
CanonImageclass Mf451dw Firmware<= 05.07
CanonImageclass Lbp237dw Firmware<= 05.07
CanonImageclass Lbp236dw Firmware<= 05.07
CanonImageclass X Mf1238 Ii Firmware<= 05.07
CanonImageclass X Mf1643i Ii Firmware<= 05.07
CanonImageclass X Mf1643if Ii Firmware<= 05.07
CanonImageclass X Lbp1238 Ii Firmware<= 05.07
CanonI-Sensys Mf657cdw Firmware<= 05.07
CanonI-Sensys Mf655cdw Firmware<= 05.07
CanonI-Sensys Mf651cdw Firmware<= 05.07
CanonI-Sensys Lbp633cdw Firmware<= 05.07
CanonI-Sensys Lbp631cdw Firmware<= 05.07
CanonI-Sensys Mf553dw Firmware<= 05.07
CanonI-Sensys Mf552dw Firmware<= 05.07
CanonI-Sensys Mf455dw Firmware<= 05.07
CanonI-Sensys Mf453dw Firmware<= 05.07
CanonI-Sensys Lbp236dw Firmware<= 05.07
CanonI-Sensys Lbp233dw Firmware<= 05.07
CanonImagerunner 1643if Ii Firmware<= 05.07
CanonImagerunner 1643i Ii Firmware<= 05.07
CanonI-Sensys X 1238if Ii Firmware<= 05.07
CanonI-Sensys X 1238i Ii Firmware<= 05.07
CanonI-Sensys X 1238p Ii Firmware<= 05.07
CanonI-Sensys X 1238pr Ii Firmware<= 05.07

References

Timeline

Published
Last Modified
Status
Analyzed

Frequently Asked Questions

What is CVE-2025-2146?
Buffer overflow in WebService Authentication processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw/Satera MF551dw/Satera MF457dw firmware v05.07 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw/imageCLASS MF455dw/imageCLASS MF453dw/imageCLASS MF452dw/imageCLASS MF451dw/imageCLASS LBP237dw/imageCLASS LBP236dw/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II/imageCLASS X LBP1238 II firmware v05.07 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw/i-SENSYS MF553dw/i-SENSYS MF552dw/i-SENSYS MF455dw/i-SENSYS MF453dw/i-SENSYS LBP236dw/i-SENSYS LBP233dw/imageRUNNER 1643iF II/imageRUNNER 1643i II/i-SENSYS X 1238iF II/i-SENSYS X 1238i II/i-SENSYS X 1238P II/i-SENSYS X 1238Pr II firmware v05.07 and earlier sold in Europe.
How severe is CVE-2025-2146?
CVE-2025-2146 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 0.73% probability of exploitation in the next 30 days.
How do I fix CVE-2025-2146?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2025-2146?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST