ImageRUNNER ADVANCE 525iF II/525iFZ II/615iF II/615iFZ II/715iF II/715iFZ II ImageRUNNER ADVANCE 8505i III/8585i III/8595i III ImageRUNNER ADVANCE 8505i II/8585i II/8595i II ImageRUNNER ADVANCE 6575i II/6565i II/6555i II When using Canon products, we recommend using a fire wall, a wire connected environment or a securely protected private network environment when using a Wi-Fi router, and we also recommend setting a private IP address.įor more information, please review the following link "Securing products when connecting to a network" which can be accessed at: Ĭanon Enterprise/Small Office Multifunction Printers and Laser Printers/Inkjet Printers that require firmware updating and possible additional corrective action: In addition, we do not recommend that Canon products be directly connected to the Internet. Depending on the product model, please refer to the steps listed below to check the key and additional corrective measures to be taken. In instances where the RSA key pair had been created by the cryptographic library with this vulnerability, additional steps should be taken after you have upgraded the product’s firmware to the latest version.
However, we recommend updating the firmware for the products listed below to the latest version available. If the RSA key pair is used for TLS or IPSec, which was generated by the cryptographic library with this vulnerability, the RSA Public Key can be used to guess and possibly decipher captured communications by a third party.Īs of the date of this Service Notice Update, Canon has not received any reports that this vulnerability has impacted any Canon products. The risk of this vulnerability is the possibility of the private key for its RSA public key being exploited by a third party due to the incorrect generation process of the RSA key pair. Service Notice Update: Measures to be taken against potential vulnerability in RSA Key generation for Canon Enterprise/Small Office Multifunction Printers and Laser Printers/Inkjet PrintersĪ potential vulnerability (CVE-2022-26320) has been confirmed by Canon in the RSA key generating process in the cryptographic library mounted on Canon’s Enterprise/Small Office Multifunction Printers and Laser Printers/Inkjet Printers (Affected products are listed below).
0 kommentar(er)
