This is to inform you that a cross-site scripting vulnerability has been confirmed in the Remote UI feature of Canon Laser Printers and Small Office Multifunction Printers (Refer to affected models shown below)
（Vulnerability Tracking ID：JVN#64806328）
To execute an attack using this vulnerability, the attacker needs to operate in the administrative rights of the product. We have not received any report of damage up to date. For the safety of your products, please update the firmware of the affected products to the latest version.
At the same time, do not connect directly to the Internet. Instead, set a private IP address on a secure private network configured via firewall product or a wired/Wi-Fi router.
For details, please refer to the following link
“Regarding security for products connected to a network”
We will work to further strengthen security measures to ensure that customers can continue using Canon products with peace of mind.
The Laser Printers and Small Office Multifunction Printers, which require the countermeasure
MF269dw / MF249dw / MF229dw / MF4890dw / MF4570dw / MF4580dw
Firmware for the Small Office Multifunction Printers