CVE-2025-14237
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-16

Last updated on: 2026-01-16

Assigner: Canon Inc.

Description
Buffer overflow in XPS font parse processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-16
Last Modified
2026-01-16
Generated
2026-05-07
AI Q&A
2026-01-16
EPSS Evaluated
2026-05-05
NVD
CVE-2025-14237
Affected Vendors & Products
Showing 21 associated CPEs
Vendor Product Version / Range
canon satera_lbp670c_series *
canon satera_mf750c_series to 06.02 (inc)
canon color_imageclass_lbp630c to 06.02 (inc)
canon color_imageclass_mf650c_series to 06.02 (inc)
canon imageclass_lbp230_series to 06.02 (inc)
canon imageclass_x_lbp1238_ii to 06.02 (inc)
canon imageclass_mf450_series to 06.02 (inc)
canon imageclass_x_mf1238_ii to 06.02 (inc)
canon imageclass_x_mf1643i_ii to 06.02 (inc)
canon imageclass_x_mf1643if_ii to 06.02 (inc)
canon i-sensys_lbp630c_series to 06.02 (inc)
canon i-sensys_mf650c_series to 06.02 (inc)
canon i-sensys_lbp230_series to 06.02 (inc)
canon 1238p_ii to 06.02 (inc)
canon 1238pr_ii to 06.02 (inc)
canon i-sensys_mf450_series to 06.02 (inc)
canon i-sensys_mf550_series to 06.02 (inc)
canon 1238i_ii to 06.02 (inc)
canon 1238if_ii to 06.02 (inc)
canon imagerunner_1643i_ii to 06.02 (inc)
canon imagerunner_1643if_ii to 06.02 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is a buffer overflow in the XPS font parsing process on certain Canon Small Office Multifunction Printers and Laser Printers. It allows an attacker on the same network segment to cause the affected printer to become unresponsive or potentially execute arbitrary code on the device.


How can this vulnerability impact me? :

The vulnerability can impact you by allowing an attacker to disrupt printer operations, making the device unresponsive, or by executing arbitrary code, which could lead to unauthorized control over the printer and potentially further compromise of your network.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart