CVE-2013-4614

Published: Jun 21, 2013Modified: Apr 29, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

English/pages_MacUS/wls_set_content.html on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers shows the Wi-Fi PSK passphrase in cleartext, which allows physically proximate attackers to obtain sensitive information by reading the screen of an unattended workstation.

Affected (9)

Products: Canon: Mg3100 Printer, Mg5300 Printer, Mg6100 Printer, Mp340 Printer, Mp495 Printer, Mx870 Printer, Mx890 Printer, Mx920 Printer, Mx922 Printer

9 products

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Canon Mg3100 Printer	All versions
Canon Mg5300 Printer	All versions
Canon Mg6100 Printer	All versions
Canon Mp340 Printer	All versions
Canon Mp495 Printer	All versions
Canon Mx870 Printer	All versions
Canon Mx890 Printer	All versions
Canon Mx920 Printer	All versions
Canon Mx922 Printer	All versions

Related CWEs

CWE-255

References (6)

http://archives.neohapsis.com/archives/fulldisclosure/2013-06/0146.html

Source: cve@mitre.org

http://www.mattandreko.com/2013/06/canon-y-u-no-security.html

Source: cve@mitre.org

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/canon_wireless.rb

Source: cve@mitre.org

http://archives.neohapsis.com/archives/fulldisclosure/2013-06/0146.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mattandreko.com/2013/06/canon-y-u-no-security.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/canon_wireless.rb

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.