CVE-2024-2184

Summary

Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers() which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.:Satera MF740C Series/Satera MF640C Series/Satera LBP660C Series/Satera LBP620C Series firmware v12.07 and earlier, and Satera MF750C Series/Satera LBP670C Series firmware v03.09 and earlier sold in Japan.Color imageCLASS MF740C Series/Color imageCLASS MF640C Series/Color imageCLASS X MF1127C/Color imageCLASS LBP664Cdw/Color imageCLASS LBP622Cdw/Color imageCLASS X LBP1127C firmware v12.07 and earlier, and Color imageCLASS MF750C Series/Color imageCLASS X MF1333C/Color imageCLASS LBP674Cdw/Color imageCLASS X LBP1333C firmware v03.09 and earlier sold in US.i-SENSYS MF740C Series/i-SENSYS MF640C Series/C1127i Series/i-SENSYS LBP660C Series/i-SENSYS LBP620C Series/C1127P firmware v12.07 and earlier, and i-SENSYS MF750C Series/C1333i Series/i-SENSYS LBP673Cdw/C1333P firmware v03.09 and earlier sold in Europe.

Affected Software

VendorProductVersion RangeStatus
Canon Inc.Color imageCLASS MF740C Seriesv12.07 and earlieraffected
Canon Inc.Color imageCLASS MF640C Seriesv12.07 and earlieraffected
Canon Inc.i-SENSYS MF740C Seriesv12.07 and earlieraffected
Canon Inc.i-SENSYS MF640C Seriesv12.07 and earlieraffected
Canon Inc.Satera MF740C Seriesv12.07 and earlieraffected
Canon Inc.Satera MF640C Seriesv12.07 and earlieraffected
Canon Inc.Color imageCLASS X MF1127Cv12.07 and earlieraffected
Canon Inc.C1127i Seriesv12.07 and earlieraffected
Canon Inc.Color imageCLASS LBP664Cdwv12.07 and earlieraffected
Canon Inc.Color imageCLASS LBP622Cdwv12.07 and earlieraffected
Canon Inc.i-SENSYS LBP660C Seriesv12.07 and earlieraffected
Canon Inc.i-SENSYS LBP620C Seriesv12.07 and earlieraffected
Canon Inc.Satera LBP660C Seriesv12.07 and earlieraffected
Canon Inc.Satera LBP620C Seriesv12.07 and earlieraffected
Canon Inc.Color imageCLASS X LBP1127Cv12.07 and earlieraffected
Canon Inc.C1127Pv12.07 and earlieraffected
Canon Inc.Color imageCLASS MF750C Seriesv03.09 and earlieraffected
Canon Inc.i-SENSYS MF750C Seriesv03.09 and earlieraffected
Canon Inc.Satera MF750C Seriesv03.09 and earlieraffected
Canon Inc.Color imageCLASS X MF1333Cv03.09 and earlieraffected
Canon Inc.C1333i Seriesv03.09 and earlieraffected
Canon Inc.Color imageCLASS LBP674Cdwv03.09 and earlieraffected
Canon Inc.i-SENSYS LBP673Cdwv03.09 and earlieraffected
Canon Inc.Satera LBP670C Seriesv03.09 and earlieraffected
Canon Inc.Color imageCLASS X LBP1333Cv03.09 and earlieraffected
Canon Inc.C1333Pv03.09 and earlieraffected

Weaknesses

  • CWE-787: CWE-787: Out-of-bounds Write

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References