CVE-2025-1268

Name of the Vulnerable Software and Affected Versions Generic Plus PCL6 Printer Driver versions 3.12 and earlier Generic Plus UFR II Printer Driver versions 3.12 and earlier Generic Plus LIPS4 Printer Driver versions 3.12 and earlier Generic Plus LIPSLX Printer Driver versions 3.12 and earlier Generic Plus PS Printer Driver versions 3.12 and earlier

Description The issue is related to an out-of-bounds vulnerability in the EMF Recode processing of the affected printer drivers. This vulnerability could allow an attacker to execute arbitrary code remotely by sending a specially crafted file to the printer. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Technical details about exploitation include the vulnerability being related to the EMF Recode processing in the affected drivers. No specific API endpoints, vulnerable parameters, or function names are mentioned in the provided descriptions.

Recommendations For Generic Plus PCL6 Printer Driver versions 3.12 and earlier, update to a newer version that contains a fix for this vulnerability. For Generic Plus UFR II Printer Driver versions 3.12 and earlier, update to a newer version that contains a fix for this vulnerability. For Generic Plus LIPS4 Printer Driver versions 3.12 and earlier, update to a newer version that contains a fix for this vulnerability. For Generic Plus LIPSLX Printer Driver versions 3.12 and earlier, update to a newer version that contains a fix for this vulnerability. For Generic Plus PS Printer Driver versions 3.12 and earlier, update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider disabling the EMF Recode processing in the affected drivers until a patch is available. Restrict access to the vulnerable drivers to minimize the risk of exploitation. Avoid using the affected drivers until the issue is resolved.