CVE-2026-1789

low-risk

Published 2026-04-24

A vulnerability in the browser-based remote management interface may allow an administrator to access sensitive information on the device via crafted requests, affecting certain production printers and office/small office multifunction printers.

Do I need to act?

0.05% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 4.9/10 Medium

NETWORK / LOW complexity

References (4)

https://canon.jp/support/support-info/260423vulnerability-response

https://psirt.canon/advisory-information/cp2026-003/

https://www.canon-europe.com/support/product-security/

https://www.usa.canon.com/about-us/to-our-customers/cpa2026-003-vulnerability-mi...

/ 100

low-risk

Severity 20/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal