Regarding Measure against RSA Key Generation Vulnerability for Enterprise/Small Office Multifunction Printers and Laser Printers/Inkjet Printers - Canon South & Southeast Asia

28 Jul 2022 (Updated)

    Regarding Measure against RSA Key Generation Vulnerability for Enterprise/Small Office Multifunction Printers and Laser Printers/Inkjet Printers

    Thank you for using Canon products.

    A vulnerability affecting Cryptographic library’s RSA Key generation in Canon’s Enterprise/Small Office Multifunction Printers and Laser Printers/Inkjet Printers has been confirmed. (CVE-2022-26320)

    This vulnerability may allow efficient calculation of private RSA key from the public key of a TLS certificate due to incorrect generation process of RSA key pair.  If an RSA key pair generated by a Cryptographic library affected by this vulnerability is used for TLS or IPSec, such RSA public key could be exploited by third party and render the certificate invalid.

    There have been no reports of damage relating to this vulnerability. However, to enhance the security of the product, we advise customers to install the latest firmware available for the affected products mentioned below.

    In case an RSA key pair is generated by an affected Cryptographic library, additional steps are required after firmware upgrade. Please see below for detailed steps.

    We also recommend customers to set a private IP address for the products and create a network environment with a firewall or Wi-Fi router that can restrict network access.

    For more details on “Securing products when connecting to a network, please visit here.

    We will continue to update customers on any vulnerability detected in other products.

    Affected Products:

    Enterprise/Small Office Multifunction Printers Detailed Steps Guide
    imagePRESS C165 / C170 Click Here
    imageRUNNER 1643 II Series Click Here
    imageRUNNER 2425 Click Here
    imageRUNNER 2635 / 2645 / 2630 / 2625 Click Here
    imageRUNNER C3222L Click Here
    imageRUNNER C3226 / C3222 Click Here
    imageRUNNER ADVANCE 4500 III Series Click Here
    imageRUNNER ADVANCE 4500 Series Click Here
    imageRUNNER ADVANCE 6570 III Series Click Here
    imageRUNNER ADVANCE 6570 Series Click Here
    imageRUNNER ADVANCE 715  Click Here
    imageRUNNER ADVANCE 715 III Click Here
    imageRUNNER ADVANCE 8500 III Series Click Here
    imageRUNNER ADVANCE 8500 Series Click Here
    imageRUNNER ADVANCE C3500 III Series Click Here
    imageRUNNER ADVANCE C3500 Series Click Here
    imageRUNNER ADVANCE C355  Click Here
    imageRUNNER ADVANCE C356 Click Here
    imageRUNNER ADVANCE C356 III Click Here
    imageRUNNER ADVANCE C5500 III Series Click Here
    imageRUNNER ADVANCE C5500 Series Click Here
    imageRUNNER ADVANCE C7500 III Series Click Here
    imageRUNNER ADVANCE C7500 Series Click Here
    imageRUNNER ADVANCE DX 4700 Series Click Here
    imageRUNNER ADVANCE DX 6000 Click Here
    imageRUNNER ADVANCE DX 6700 Series Click Here
    imageRUNNER ADVANCE DX 6800 Series Click Here
    imageRUNNER ADVANCE DX 717 Click Here
    imageRUNNER ADVANCE DX 8700 Series Click Here
    imageRUNNER ADVANCE DX C357 Click Here
    imageRUNNER ADVANCE DX C3700 Series Click Here
    imageRUNNER ADVANCE DX C3800 Series Click Here
    imageRUNNER ADVANCE DX C5700 Series Click Here
    imageRUNNER ADVANCE DX C5800 Series Click Here
    imageRUNNER ADVANCE DX C7700 Series Click Here
    Inkjet Printers Detailed Steps Guide
    PIXMA PRO-200 Click Here
    PIXMA PRO-300 Click Here
    MAXIFY GX6070 Click Here
    MAXIFY GX7070 Click Here
    Large Format Printers Detailed Steps Guide
    imagePROGRAF TZ-5300 -
    imagePROGRAF TX-5410 -
    imagePROGRAF TX-5310 -
    imagePROGRAF TX-5210 -
    GP-520 -
    GP-540 -
    GP-5200 -
    GP-5300 -

    Support:
    Enterprise/Small Office Multifunction Printers

    Please contact your nearest service center

    Inkjet Printers
    Please contact your nearest service center

    Large Format Printers
    Please contact your nearest service center

     

    First Posted on 15 Mar 2022