CVE-2019-14339

Name of the Vulnerable Software and Affected Versions jp.co.canon.bsd.ad.pixmaprint version 2.5.5

Description The issue concerns the ContentProvider in the Canon PRINT application, which fails to properly restrict access to canon.ij.printer.capability.data. This allows a malicious application to obtain sensitive information, including factory passwords for the administrator web interface and WPA2-PSK key.

Recommendations For version 2.5.5, consider restricting access to the ContentProvider to minimize the risk of exploitation. As a temporary workaround, avoid using the Canon PRINT application until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.