CVE-2025-1268
CRITICAL EPSS 50.5%
Published Mar 31, 20251y ago · Modified Jun 17, 20261w ago
9.4 CVSS 3.1
Published Mar 31, 2025 1y ago
Last Modified Jun 17, 2026 1w ago
Description
Out-of-bounds vulnerability in EMF Recode processing of Generic Plus PCL6 Printer Driver / Generic Plus UFR II Printer Driver / Generic Plus LIPS4 Printer Driver / Generic Plus LIPSLX Printer Driver / Generic Plus PS Printer Driver / Generic FAX Printer Driver / UFRII LT Printer Driver / CARPS2 Printer Driver / PDF Driver / LIPS4 Printer Driver / LIPSLX Printer Driver / UFR II Printer Driver / PS Printer Driver / PCL6 Printer Driver
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability Low
Threat Intelligence
EPSS Exploit Probability
50.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-787 Out-of-bounds Write Memory Safety
References 4
- canon.jp https://canon.jp/support/support-info/250328vulnerability-response
- psirt.canon https://psirt.canon/advisory-information/cp2025-003/
- canon-europe.com https://www.canon-europe.com/support/product-security/
- usa.canon.com https://www.usa.canon.com/about-us/to-our-customers/service-notice-vulnerability-remediation-for-certain-printer-drivers-for-production-printers-office-small-office-multifunction-printers-and-laser-printers
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.