CVE-2023-1764 MEDIUM

CVE-2023-1764

Vendor Canon Inc.
Product Canon IJ NW Tool
Weakness CWE-326 · Weak encryption
Published May 17, 2023
Last update January 22, 2025

CVSS base score

6.5/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

Canon IJ Network Tool/Ver.4.7.5 and earlier (supported OS: OS X 10.9.5-macOS 13),IJ Network Tool/Ver.4.7.3 and earlier (supported OS: OS X 10.7.5-OS X 10.8) allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the communication of the software.

Key dates

02Disclosure timeline

May 17, 2023 CVE published
January 22, 2025 Record updated