CVE-2024-45320

CVSS 6.5 MEDIUMEPSS 0.2%CWE-787

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 6.5EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

18 Feb 2025Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Out-of-bounds write vulnerability exists in DocuPrint CP225w 01.22.01 and earlier, DocuPrint CP228w 01.22.01 and earlier, DocuPrint CM225fw 01.10.01 and earlier, and DocuPrint CM228fw 01.10.01 and earlier. If an affected MFP processes a specially crafted printer job file, a denial-of-service (DoS) condition may occur.

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

FUJIFILM Business Innovation Corp. · DocuPrint CM225fw FUJIFILM Business Innovation Corp. · DocuPrint CM228fw FUJIFILM Business Innovation Corp. · DocuPrint CP225w FUJIFILM Business Innovation Corp. · DocuPrint CP228w

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jvn.jp/en/vu/JVNVU96297631/https://www.fujifilm.com/fbglobal/eng/company/news/notice/2025/0217_announce.html