Canon has published a security advisory disclosing a critical vulnerability in drivers for “production printers, office/small office multifunction printers and laser printers.” CVE-2025-1268, CVSS score 9.4, would allow an attacker to prevent printing and possibly execute arbitrary code when the print is processed by a malicious application, due to an out-of-bounds vulnerability in the EMF Recode processing of Generic Plus PCL6, UFR II, LIPS4, LIPSLX, and PS Printer Drivers V3.12 and earlier. Canon advises customers to install the latest drivers from “websites of your local Canon sales representatives.” More https://psirt.canon/advisory-information/cp2025-003/
