CVE-2020-16849

{"id": "CVE-2020-16849", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-11-30T22:15:10.777", "references": [{"url": "https://blog.scadafence.com/vulnerability-report-cve-2020-16849", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.canon-europe.com/support/product-security/", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://blog.scadafence.com/vulnerability-report-cve-2020-16849", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.canon-europe.com/support/product-security/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered on Canon MF237w 06.07 devices. An \"Improper Handling of Length Parameter Inconsistency\" issue in the IPv4/ICMPv4 component, when handling a packet sent by an unauthenticated network attacker, may expose Sensitive Information."}, {"lang": "es", "value": "Se detect\u00f3 un problema en los dispositivos Canon MF237w versi\u00f3n 06.07. Un problema de \"Improper Handling of Length Parameter Inconsistency\" en el componente IPv4/ICMPv4, cuando se maneja un paquete enviado por un atacante de red no autenticado, puede exponer informaci\u00f3n confidencial"}], "lastModified": "2024-11-21T05:07:15.857", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf237w_firmware:06.07:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3794F0A2-5B34-43A2-AC06-A930EC9C05B5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf237w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AC88D5BA-D54A-46AF-9F68-28BC78F1061C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf113w_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9909F2F9-DBB4-4893-8B13-336E0FA955F9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf113w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "10E9019D-689F-4438-AB63-0D3B4BC2D1CF"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf212w_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "959E88B2-CD60-4FBF-8126-49B8B3103596"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf212w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7BFF65AB-5D73-487E-B4E0-E773922B953E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf216n_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6097AD72-17E2-4554-A5CB-57CA6115B50C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf216n:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6977C1A5-C02C-41F9-8DB5-3B176C4E4048"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf217w_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FE9C1D6-5403-4EEF-96AB-F6A3A89E259B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf217w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4660CAEC-C9E9-4081-A594-1C669D98B923"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf226dn_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "092D571C-4188-4C14-A1C2-65F079CE0DD3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf226dn:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EF7EA529-5D79-4D4F-BAE7-451E54B1902D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf229dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FB483E9-F7E0-4481-916B-A4D31A1E27B9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf229dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2C8B2246-BE16-4EA0-9B3D-1A3626BF37DB"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf231_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E03548F5-0DEA-4057-AE85-42FB96B2AB9A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf231:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2DB1563C-5BE8-4A10-8F84-FCBE92DE7DC2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf232w_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F54BC391-9CA2-4F8A-BAC7-3388D3F68F18"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf232w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4A64DF80-8323-4DEF-991B-5657910E7504"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf244dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12DB20BB-8C50-417A-9EF5-EC61AE3787BF"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf244dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E2B39590-B870-43C0-A0E7-D293DCCBBA76"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf247dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F364B0F2-FA8E-4A76-ABD3-CA813951AA27"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf247dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B2F8688C-F46F-4038-99F3-B2DBC0F6A4D3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf249dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "953A1AAA-B841-417F-957D-A252BDBE60E6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf249dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "314AC8CD-29AA-4F0C-88C0-7613645EE891"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf264dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "097D073B-BF55-42EF-9FC6-DB58D9F5F6B2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf264dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "49944C71-0486-4D6B-B5E4-98ED236A94B2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf267dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F470BFFD-9208-4749-9B85-3CEEA7C6552F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf267dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CEE6904A-EA34-40FA-96C8-B45068F73ED8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf269dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0CE06E45-2A82-44C8-A413-E9E08E30F98D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf269dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6658823D-A276-40E2-B00C-E77583896D10"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf4570dn_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "742D7702-D1E2-4173-AE43-D2237AD020F6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf4570dn:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8E794B9A-280A-4DF6-BC52-9D225ABF2B88"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf4580dn_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EB462AF-AB68-4458-8814-E088FB7A9881"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf4580dn:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E5B13AF5-5D72-4890-BC60-ABD5E747AFD8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf4780w_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "184032C5-D909-4AB1-BA03-FF3274F2E713"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf4780w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B6C2EFBD-6421-4027-9710-2FE3A5F631D5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf4870dn_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DB02DD0-65A5-40F0-9813-A9E902848F97"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf4870dn:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5CA7BD27-9896-41FB-9A4E-31B4E2D8187A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:mf4890dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4690F73C-034F-4A71-869C-25251C560CA1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:mf4890dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8F6C210A-329A-45CC-9165-77E37499E358"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:lbp113w_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EED1C8C-FE7F-4327-A396-350286915C56"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:lbp113w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1DF50F0A-0B4C-4B5C-A3D8-2B8DA5266CA6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:lbp151dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7D67B56-8066-4E9D-A475-B43DDC8BF694"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:lbp151dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "249B2617-22D5-4E83-9AF9-ABE3280D5330"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:lbp162dw_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1D24E91-A38D-4B1E-8DB5-490152835716"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:lbp162dw:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E8006A58-6A22-44A4-873A-8C88998B3B4E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:ir2202n_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4A44C8FA-98DB-454A-94CC-B9E9E40127CC"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:ir2202n:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8ED79E0A-1A3E-4365-976D-457C7D928E40"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:ir2204n_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "389E9883-CCD6-44CC-B0DC-0550C6BD1046"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:ir2204n:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E9513E67-D7B8-42EE-B9BF-6BE51EE47F3A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:ir2204f_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BCB9E7D2-8506-4489-AD89-459F99FE7BE4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:ir2204f:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4CB806C6-20B2-49C7-9D06-D25261CF1102"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:ir2206n_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFD9B73D-59AA-4A54-B39B-6890D8752F56"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:ir2206n:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E891FD81-FE64-4D0F-873C-BE9E5BE21E69"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canon:ir2206if_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC77979C-E077-47E9-A2C3-39BB67AE22E8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:canon:ir2206if:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "52EBE832-BA88-4C30-96FA-83DAA8B3FE98"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}