ID CVE-2013-4614
Summary English/pages_MacUS/wls_set_content.html on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers shows the Wi-Fi PSK passphrase in cleartext, which allows physically proximate attackers to obtain sensitive information by reading the screen of an unattended workstation.
References
Vulnerable Configurations
  • cpe:2.3:h:canon:mg3100_printer:-:*:*:*:*:*:*:*
    cpe:2.3:h:canon:mg3100_printer:-:*:*:*:*:*:*:*
  • cpe:2.3:h:canon:mg5300_printer:-:*:*:*:*:*:*:*
    cpe:2.3:h:canon:mg5300_printer:-:*:*:*:*:*:*:*
  • cpe:2.3:h:canon:mg6100_printer:-:*:*:*:*:*:*:*
    cpe:2.3:h:canon:mg6100_printer:-:*:*:*:*:*:*:*
  • cpe:2.3:h:canon:mp340_printer:-:*:*:*:*:*:*:*
    cpe:2.3:h:canon:mp340_printer:-:*:*:*:*:*:*:*
  • cpe:2.3:h:canon:mp495_printer:-:*:*:*:*:*:*:*
    cpe:2.3:h:canon:mp495_printer:-:*:*:*:*:*:*:*
  • cpe:2.3:h:canon:mx870_printer:-:*:*:*:*:*:*:*
    cpe:2.3:h:canon:mx870_printer:-:*:*:*:*:*:*:*
  • cpe:2.3:h:canon:mx890_printer:-:*:*:*:*:*:*:*
    cpe:2.3:h:canon:mx890_printer:-:*:*:*:*:*:*:*
  • cpe:2.3:h:canon:mx920_printer:-:*:*:*:*:*:*:*
    cpe:2.3:h:canon:mx920_printer:-:*:*:*:*:*:*:*
  • cpe:2.3:h:canon:mx922_printer:-:*:*:*:*:*:*:*
    cpe:2.3:h:canon:mx922_printer:-:*:*:*:*:*:*:*
CVSS
Base: 2.1 (as of 24-06-2013 - 22:30)
Impact:
Exploitability:
CWE CWE-255
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:L/AC:L/Au:N/C:P/I:N/A:N
refmap via4
fulldisc 20130618 Canon Wireless Printer Disclosure & DoS
misc
Last major update 24-06-2013 - 22:30
Published 21-06-2013 - 21:55
Last modified 24-06-2013 - 22:30
Back to Top