Summary: Canon has announced a critical security vulnerability (CVE-2025-1268) affecting various versions of its Generic Plus printer drivers, which could allow for printing disruptions or arbitrary code execution when exploited. The vulnerability, rated with a CVSS score of 9.4, affects production and multifunction printers. Canon is urging customers to update their printer drivers to secure their devices against this risk.
Affected: Canon printers (Generic Plus drivers)
Keypoints :
- Vulnerability identified as CVE-2025-1268, classified as an out-of-bounds issue.
- Affects Generic Plus PCL6, UFR II, LIPS4, LIPSLX, and PS Printer Drivers up to version 3.12.
- Canon plans to release updated drivers to address the vulnerability and advises immediate installation.
- Reported by the Microsoft Offensive Research and Security Engineering Team (MORSE).
Source: https://securityonline.info/canon-fixes-critical-printer-driver-flaw-cve-2025-1268-alert/
Views: 22