CVE-2024-12649

CRITICAL
Published Jan 28, 2025 Modified Jan 26, 2026 CWE-787

Description

Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe.

Is your site exposed to CVE-2024-12649?

Run a free security scan — no signup, results in seconds.

CVSS v3.1 Score

9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weakness Type (CWE)

CWE-787 Out-of-bounds Write

Affected Products

Vendor Product
canon mf455dw_firmware
canon mf455dw
canon mf453dw_firmware
canon mf453dw
canon mf452dw_firmware
canon mf452dw
canon mf451dw_firmware
canon mf451dw
canon mf465dw_firmware
canon mf465dw
canon mf462dw_firmware
canon mf462dw
canon mf656cdw_firmware
canon mf656cdw
canon mf654cdw_firmware
canon mf654cdw
canon mf653cdw_firmware
canon mf653cdw
canon mf652cw_firmware
canon mf652cw
canon mf1238_ii_firmware
canon mf1238_ii
canon mf1440_firmware
canon mf1440
canon mf1643if_ii_firmware
canon mf1643if_ii
canon mf1643i_ii_firmware
canon mf1643i_ii
canon lbp237dw_firmware
canon lbp237dw
canon lbp236dw_firmware
canon lbp236dw
canon lbp247dw_firmware
canon lbp247dw
canon lbp246dw_firmware
canon lbp246dw
canon lbp633cdw_firmware
canon lbp633cdw
canon lbp632cdw_firmware
canon lbp632cdw
canon lbp1238_ii_firmware
canon lbp1238_ii
canon lbp1440_firmware
canon lbp1440

References

Frequently Asked Questions

What is CVE-2024-12649? +
Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier sold in Japan. Color imageCLASS MF656Cdw/Color imageCLASS MF654Cdw/Color imageCLASS MF653Cdw/Color imageCLASS MF652Cdw/Color imageCLASS LBP633Cdw/Color imageCLASS LBP632Cdw firmware v05.04 and earlier sold in US. i-SENSYS MF657Cdw/i-SENSYS MF655Cdw/i-SENSYS MF651Cdw/i-SENSYS LBP633Cdw/i-SENSYS LBP631Cdw firmware v05.04 and earlier sold in Europe. It has a CVSS v3.1 base score of 9.8 (CRITICAL).
How severe is CVE-2024-12649? +
CVE-2024-12649 has a CVSS v3.1 score of 9.8 out of 10, rated CRITICAL. This is a critical vulnerability that should be patched immediately.
What products are affected by CVE-2024-12649? +
CVE-2024-12649 affects products from canon, specifically: lbp1238_ii, lbp1238_ii_firmware, lbp1440, lbp1440_firmware, lbp236dw, lbp236dw_firmware, lbp237dw, lbp237dw_firmware, lbp246dw, lbp246dw_firmware, lbp247dw, lbp247dw_firmware, lbp632cdw, lbp632cdw_firmware, lbp633cdw, lbp633cdw_firmware, mf1238_ii, mf1238_ii_firmware, mf1440, mf1440_firmware, mf1643i_ii, mf1643i_ii_firmware, mf1643if_ii, mf1643if_ii_firmware, mf451dw, mf451dw_firmware, mf452dw, mf452dw_firmware, mf453dw, mf453dw_firmware, mf455dw, mf455dw_firmware, mf462dw, mf462dw_firmware, mf465dw, mf465dw_firmware, mf652cw, mf652cw_firmware, mf653cdw, mf653cdw_firmware, mf654cdw, mf654cdw_firmware, mf656cdw, mf656cdw_firmware. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2024-12649? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2024-12649 — free, no signup required.