Description
Buffer overflow in WebService Authentication processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw/Satera MF551dw/Satera MF457dw firmware v05.07 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw/imageCLASS MF455dw/imageCLASS MF453dw/imageCLASS MF452dw/imageCLASS MF451dw/imageCLASS LBP237dw/imageCLASS LBP236dw/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II/imageCLASS X LBP1238 II firmware v05.07 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw/i-SENSYS MF553dw/i-SENSYS MF552dw/i-SENSYS MF455dw/i-SENSYS MF453dw/i-SENSYS LBP236dw/i-SENSYS LBP233dw/imageRUNNER 1643iF II/imageRUNNER 1643i II/i-SENSYS X 1238iF II/i-SENSYS X 1238i II/i-SENSYS X 1238P II/i-SENSYS X 1238Pr II firmware v05.07 and earlier sold in Europe.
Details
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Packages
| Software | From version | Fixed in |
|---|---|---|
| i-sensys-lbp233dw-firmware | — | 05.07 |
| i-sensys-lbp236dw-firmware | — | 05.07 |
| i-sensys-lbp631cdw-firmware | — | 05.07 |
| i-sensys-lbp633cdw-firmware | — | 05.07 |
| i-sensys-mf453dw-firmware | — | 05.07 |
| i-sensys-mf455dw-firmware | — | 05.07 |
| i-sensys-mf552dw-firmware | — | 05.07 |
| i-sensys-mf553dw-firmware | — | 05.07 |
| i-sensys-mf651cdw-firmware | — | 05.07 |
| i-sensys-mf655cdw-firmware | — | 05.07 |
| i-sensys-mf657cdw-firmware | — | 05.07 |
| i-sensys-x-1238i-ii-firmware | — | 05.07 |
| i-sensys-x-1238if-ii-firmware | — | 05.07 |
| i-sensys-x-1238p-ii-firmware | — | 05.07 |
| i-sensys-x-1238pr-ii-firmware | — | 05.07 |
| imageclass-lbp236dw-firmware | — | 05.07 |
| imageclass-lbp237dw-firmware | — | 05.07 |
| imageclass-lbp632cdw-firmware | — | 05.07 |
| imageclass-lbp633cdw-firmware | — | 05.07 |
| imageclass-mf451dw-firmware | — | 05.07 |
| imageclass-mf452dw-firmware | — | 05.07 |
| imageclass-mf453dw-firmware | — | 05.07 |
| imageclass-mf455dw-firmware | — | 05.07 |
| imageclass-mf652cdw-firmware | — | 05.07 |
| imageclass-mf653cdw-firmware | — | 05.07 |
| imageclass-mf654cdw-firmware | — | 05.07 |
| imageclass-mf656cdw-firmware | — | 05.07 |
| imageclass-x-lbp1238-ii-firmware | — | 05.07 |
| imageclass-x-mf1238-ii-firmware | — | 05.07 |
| imageclass-x-mf1643i-ii-firmware | — | 05.07 |
| imageclass-x-mf1643if-ii-firmware | — | 05.07 |
| imagerunner-1643i-ii-firmware | — | 05.07 |
| imagerunner-1643if-ii-firmware | — | 05.07 |
| satera-mf457dw-firmware | — | 05.07 |
| satera-mf551dw-firmware | — | 05.07 |
| satera-mf654cdw-firmware | — | 05.07 |
| satera-mf656cdw-firmware | — | 05.07 |
References
Patch Gap Protection
Running software with known vulnerabilities?
BotEraser can help reduce exposure by blocking IPs associated with exploit activity — even before a patch is available.
Start Free →No credit card required · Results in minutes
ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.
