CVE-2025-48499 | THREATINT

Description

Out-of-bounds write vulnerability exists in FUJIFILM Business Innovation MFPs. A specially crafted IPP (Internet Printing Protocol) or LPD (Line Printer Daemon) packet may cause a denial-of-service (DoS) condition on an affected MFP. Resetting the MFP is required to recover from the denial-of-service (DoS) condition.

PUBLISHED Reserved 2025-07-14 | Published 2025-08-04 | Updated 2025-08-07 | Assigner jpcert

MEDIUM: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

MEDIUM: 6.9CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Problem types

Out-of-bounds Write

Product status

01.23.02 and earlier

affected

01.23.02 and earlier

affected

01.09.00 and earlier

affected

01.09.00 and earlier

affected

01.09.00 and earlier

affected

01.09.00 and earlier

affected

01.12.02 and earlier

affected

01.12.02 and earlier

affected

01.09.01 and earlier

affected

01.09.01 and earlier

affected

01.00.47 and earlier

affected

01.00.47 and earlier

affected

01.00.47 and earlier

affected

01.00.47 and earlier

affected

References

www.fujifilm.com/...pany/news/notice/2025/0804_announce.html

jvn.jp/en/vu/JVNVU93897456/

cve.org (CVE-2025-48499)

nvd.nist.gov (CVE-2025-48499)

Download JSON