Vulnerability cyber

FUJIFILM

Aug 4, 2025 1 min read
FUJIFILM

A critical security vulnerability affecting multiple FUJIFILM printer models could allow attackers to trigger denial-of-service (DoS) conditions through malicious network packets. The vulnerability, tracked as CVE-2025-48499, affects various DocuPrint and Apeos printer series. The issue stems from an out-of-bounds write condition in the printer’s buffer memory processing system, specifically when handling IPP and LPD packets. This causes printers to freeze and require manual reboot, leading to operational disruptions. The vulnerability has been assigned a CVSS v3.1 score of 5.3 (Medium severity) and a CVSS v4.0 score of 6.9 (Medium severity). The affected models include multiple DocuPrint and Apeos series printers.

Source: https://cybersecuritynews.com/fujifilm-printers-vulnerability/

TPRM report: https://scoringcyber.rankiteo.com/company/fujifilm-print-us

"id": "fuj724080425",
"linkid": "fujifilm-print-us",
"type": "Vulnerability",
"date": "8/2025",
"severity": "50",
"impact": "",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Technology',
                        'name': 'FUJIFILM',
                        'type': 'Manufacturer'}],
 'attack_vector': 'Network access to printer, no authentication required, low '
                  'attack complexity, no user interaction needed',
 'date_publicly_disclosed': 'August 4, 2025',
 'description': 'A critical security vulnerability affecting multiple FUJIFILM '
                'printer models could allow attackers to trigger '
                'denial-of-service (DoS) conditions through malicious network '
                'packets.',
 'impact': {'downtime': ['Printers freeze and require manual reboot'],
            'operational_impact': ['Operational disruptions'],
            'systems_affected': ['FUJIFILM DocuPrint printers',
                                 'FUJIFILM Apeos printers']},
 'lessons_learned': 'Immediate firmware updates and network segmentation are '
                    'crucial.',
 'post_incident_analysis': {'corrective_actions': ['Update firmware',
                                                   'Deploy affected devices '
                                                   'behind firewalls',
                                                   'Implement network '
                                                   'segmentation'],
                            'root_causes': 'Out-of-bounds write condition in '
                                           'the printer’s buffer memory '
                                           'processing system'},
 'recommendations': 'Prioritize firmware updates and implement network '
                    'segmentation to minimize potential attack vectors.',
 'references': [{'source': 'FUJIFILM’s security advisory'}],
 'response': {'containment_measures': ['Deploy affected devices behind '
                                       'firewalls',
                                       'Network segmentation'],
              'remediation_measures': ['Update firmware immediately',
                                       'Manual rebooting if printers become '
                                       'unresponsive']},
 'title': 'CVE-2025-48499 - FUJIFILM Printer DoS Vulnerability',
 'type': 'Denial-of-Service (DoS)',
 'vulnerability_exploited': 'Out-of-Bounds Write (CWE-787)'}
Published by
Jeremy C
Jeremy C
You might also like
Vulnerability cyber

Google

public 1 min read
Researchers exploited a previously unknown Use-After-Free (UAF) vulnerability in the Linux HFSC queuing discipline to compromise all Google kernelCTF instances…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.