CVE-2026-1789
Published: Apr 23, 2026
Modified: Apr 24, 2026
CVSS v3.1
4.9
Description
A vulnerability in the browser-based remote management interface may allow an administrator to access sensitive information on the device via crafted requests, affecting certain production printers and office/small office multifunction printers.
| Vendor | Product | Versions |
|---|---|---|
Canon Inc. | imagePRESS Series | affected all version |
Canon Inc. | imageFORCE Series | affected all version |
Canon Inc. | imageRUNNER ADVANCE Series | affected all version |
Canon Inc. | imageRUNNER Series | affected all version |
Canon Inc. | Satera MF7525F | affected v15.00 or earlier |
Canon Inc. | Satera MF7625F | affected v8.12 or earlier |
Canon Inc. | Satera MF7725F | affected v16.04 or earlier |
Canon Inc. | Satera MF842CDW | affected v16.04 or earlier |
Canon Inc. | imageCLASS X C1538iF II | affected v16.04 or earlier |
Canon Inc. | imageCLASS X MF1538C II | affected v16.04 or earlier |
Canon Inc. | i-SENSYS C1533iF II | affected v16.04 or earlier |
Canon Inc. | i-SENSYS X C1538 iF II | affected v16.04 or earlier |
Canon Inc. | i-SENSYS MF842Cdw | affected v16.04 or earlier |
Canon Inc. | MF842CDW | affected v16.04 or earlier |
Canon Inc. | MF842CX | affected v16.04 or earlier |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now