CVE-2013-4614

Name of the Vulnerable Software and Affected Versions Canon MG3100 version Canon MG5300 version Canon MG6100 version Canon MP495 version Canon MX340 version Canon MX870 version Canon MX890 version Canon MX920 version Canon MX922 version

Description The issue allows physically proximate attackers to obtain sensitive information by reading the screen of an unattended workstation. This is because the English/pages MacUS/wls set content.html page on the affected Canon printers shows the Wi-Fi PSK passphrase in cleartext.

Recommendations For Canon MG3100, ensure the workstation is attended at all times to prevent unauthorized access to the screen. For Canon MG5300, ensure the workstation is attended at all times to prevent unauthorized access to the screen. For Canon MG6100, ensure the workstation is attended at all times to prevent unauthorized access to the screen. For Canon MP495, ensure the workstation is attended at all times to prevent unauthorized access to the screen. For Canon MX340, ensure the workstation is attended at all times to prevent unauthorized access to the screen. For Canon MX870, ensure the workstation is attended at all times to prevent unauthorized access to the screen. For Canon MX890, ensure the workstation is attended at all times to prevent unauthorized access to the screen. For Canon MX920, ensure the workstation is attended at all times to prevent unauthorized access to the screen. For Canon MX922, ensure the workstation is attended at all times to prevent unauthorized access to the screen.