Vulnerability Lookup

🛡️ CVE-2025-14237

🔴 CVSS 9.8 — Critical ✅ No Known Exploit CWE-787 NVD

9.8

CVSS Score

0 Low4 Medium7 High9 Critical10

Description

Buffer overflow in XPS font parse processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.

Details

Severity CRITICAL

CVSS Score 9.8

CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE CWE-787

Public Exploit ✅ No

Source NVD

Published 2026-01-16

Updated 2026-06-02

Modified 2026-01-26

Fix URL N/A

Affected Packages

Software	From version	Fixed in
lbp1238-ii-firmware	—	06.02
lbp236dw-firmware	—	06.02
lbp237dw-firmware	—	06.02
lbp632cdw-firmware	—	06.02
lbp633cdw-firmware	—	06.02
mf1238-ii-firmware	—	06.02
mf1643i-ii-firmware	—	06.02
mf1643if-ii-firmware	—	06.02
mf451dw-firmware	—	06.02
mf452dw-firmware	—	06.02
mf453dw-firmware	—	06.02
mf455dw-firmware	—	06.02
mf652cw-firmware	—	06.02
mf653cdw-firmware	—	06.02
mf654cdw-firmware	—	06.02
mf656cdw-firmware	—	06.02

References

Vendor Advisory https://canon.jp/support/support-info/260115vulnerability-response

Vendor Advisory https://psirt.canon/advisory-information/cp2026-001/

Vendor Advisory https://www.canon-europe.com/support/product-security/

Vendor Advisory https://www.usa.canon.com/support/canon-product-advisories/Service-Notice-Regarding-Remediation-Measure-Against-Potential-Buffer-Overflow-Vulnerability-in-Laser-Printers-and-Small-Office-Multifunctional-Printers

🔗 NVD 🔗 Mitre

Similar Threats

Critical CVE-2025-14231
Critical CVE-2025-14232
Critical CVE-2025-14233
Critical CVE-2025-14234
Critical CVE-2025-14235

Patch Gap Protection

Running software with known vulnerabilities?

BotEraser can help reduce exposure by blocking IPs associated with exploit activity — even before a patch is available.

Start Free →

No credit card required · Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.

Running software with known vulnerabilities?

Company

Resources

Services

Trusted

Subscribe