Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
canon vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-39368
Canon Oce Print Exec Workgroup 1.3.2 allows XSS via the lang parameter.
Canon Oce Print Exec Workgroup 1.3.2
7.2
CVSSv2
CVE-2021-38085
The Canon TR150 print driver up to and including 3.71.2.10 is vulnerable to a privilege escalation issue. During the add printer process, a local attacker can overwrite CNMurGE.dll and, if timed properly, the overwritten DLL will be loaded into a SYSTEM process resulting in escal...
Canon Pixma Tr150 Firmware
5
CVSSv2
CVE-2020-16849
An issue exists on Canon MF237w 06.07 devices. An "Improper Handling of Length Parameter Inconsistency" issue in the IPv4/ICMPv4 component, when handling a packet sent by an unauthenticated network attacker, may expose Sensitive Information.
Canon Mf237w Firmware 06.07
Canon Mf113w Firmware -
Canon Mf212w Firmware -
Canon Mf216n Firmware -
Canon Mf217w Firmware -
Canon Mf226dn Firmware -
Canon Mf229dw Firmware -
Canon Mf231 Firmware -
Canon Mf232w Firmware -
Canon Mf244dw Firmware -
Canon Mf247dw Firmware -
Canon Mf249dw Firmware -
Canon Mf264dw Firmware -
Canon Mf267dw Firmware -
Canon Mf269dw Firmware -
Canon Mf4570dn Firmware -
Canon Mf4580dn Firmware -
Canon Mf4780w Firmware -
Canon Mf4870dn Firmware -
Canon Mf4890dw Firmware -
Canon Lbp113w Firmware -
Canon Lbp151dw Firmware -
5
CVSSv2
CVE-2020-26508
The WebTools component on Canon Oce ColorWave 3500 5.1.1.0 devices allows malicious users to retrieve stored SMB credentials via the export feature, even though these are intentionally inaccessible in the UI.
Canon Oce Colorwave 3500 Firmware 5.1.1.0
6.4
CVSSv2
CVE-2020-0182
In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
Google Android 10.0
Debian Debian Linux 8.0
7.8
CVSSv2
CVE-2020-12695
The Open Connectivity Foundation UPnP specification prior to 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
Ui Unifi Controller -
W1.fi Hostapd
Asus Rt-n11 -
Broadcom Adsl -
Canon Selphy Cp1200 -
Cisco Wap150 -
Cisco Wap351 -
Cisco Wap131 -
Dlink Dvg-n5412sp -
Dell B1165nfw -
Epson Ew-m970a3t -
Epson Ep-101 -
Epson Xp-8500 -
Epson Xp-702 -
Epson Xp-340 -
Epson Xp-620 -
Epson Xp-320 -
Epson Xp-960 -
Epson Xp-2101 -
Epson Xp-330 -
Epson Xp-2105 -
Epson Xp-100 -
6 Github repositories
6.4
CVSSv2
CVE-2020-13113
An issue exists in libexif prior to 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.
Libexif Project Libexif
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Opensuse Leap 15.1
5
CVSSv2
CVE-2020-13114
An issue exists in libexif prior to 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.
Libexif Project Libexif
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Opensuse Leap 15.1
1.9
CVSSv2
CVE-2020-0093
In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Libexif Project Libexif
Opensuse Leap 15.1
1 Article
2.1
CVSSv2
CVE-2020-12767
exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.
Libexif Project Libexif 0.6.21
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Opensuse Leap 15.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »