当該機種のLBP162L
JPCERT/CC (JPCERT Coordination Center) has announced that it has confirmed the vulnerability of cross -site scripting, which is a part of Canon's laser printer and small offices for small offices.
The applicable model is LBP162L/LBP162, MF4890DW, MF269DW/MF265DW/MF262DW, MF249DW/MF245DW/MF245DW/MF242DW/MF232W, MF229DW/MF224DW/MF2222DW.
The setting function "Remote UI" mounted on the product may be executed on a web browser and any script may be executed.According to Canon, it is necessary to operate with the administrator privilege of the product, and no actual attacks have been confirmed.
The company is calling for updates to the latest firmware.
