9.1
CRITICAL
CVE-2022-26320
Fujifilm Rambus RSA Key Generation Vulnerability
Description

The Rambus SafeZone Basic Crypto Module before 10.4.0, as used in certain Fujifilm (formerly Fuji Xerox) devices before 2022-03-01, Canon imagePROGRAF and imageRUNNER devices through 2022-03-14, and potentially many other devices, generates RSA keys that can be broken with Fermat's factorization method. This allows efficient calculation of private RSA keys from the public key of a TLS certificate.

INFO

Published Date :

March 14, 2022, 6:15 p.m.

Last Modified :

Oct. 7, 2024, 4:15 p.m.

Source :

[email protected]

Remotely Exploitable :

Yes !

Impact Score :

5.2

Exploitability Score :

3.9
Public PoC/Exploit Available at Github

CVE-2022-26320 has a 1 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

Affected Products

The following products are affected by CVE-2022-26320 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Fujifilm apeos_c7070_firmware
2 Fujifilm apeos_c6570_firmware
3 Fujifilm apeos_c5570_firmware
4 Fujifilm apeos_c4570_firmware
5 Fujifilm apeos_c3570_firmware
6 Fujifilm apeos_c3070_firmware
7 Fujifilm apeos_c7070_g_firmware
8 Fujifilm apeos_c6570_g_firmware
9 Fujifilm apeos_c5570_g_firmware
10 Fujifilm apeos_c4570_g_firmware
11 Fujifilm apeos_c3570_g_firmware
12 Fujifilm apeos_c3070_g_firmware
13 Fujifilm apeos_c328_df_firmware
14 Fujifilm apeos_c328_dw_firmware
15 Fujifilm apeos_c325_dw_firmware
16 Fujifilm apeos_c325_z_firmware
17 Fujifilm apeos_c8180_firmware
18 Fujifilm apeos_c7580_firmware
19 Fujifilm apeos_c6580_firmware
20 Fujifilm apeosport_3560_firmware
21 Fujifilm apeosport_3060_firmware
22 Fujifilm apeosport_2560_firmware
23 Fujifilm apeosport_3560_g_firmware
24 Fujifilm apeosport_3060_g_firmware
25 Fujifilm apeosport_2560_g_firmware
26 Fujifilm apeosport_4570_g_firmware
27 Fujifilm apeosport_5570_g_firmware
28 Fujifilm apeosport_4570_firmware
29 Fujifilm apeosport_5570_firmware
30 Fujifilm apeosport_c3060_firmware
31 Fujifilm apeosport_c2560_firmware
32 Fujifilm apeosport_c2060_firmware
33 Fujifilm apeosport_c2560_g_firmware
34 Fujifilm apeosport_c2060_g_firmware
35 Fujifilm apeosport_c7070_firmware
36 Fujifilm apeosport_c4570_firmware
37 Fujifilm apeosport_c3570_firmware
38 Fujifilm apeosport_c3070_firmware
39 Fujifilm apeosport_c6570_firmware
40 Fujifilm apeosport_c5570_firmware
41 Fujifilm apeosport_c7070_g_firmware
42 Fujifilm apeosport_c4570_g_firmware
43 Fujifilm apeosport_c3570_g_firmware
44 Fujifilm apeosport_c3070_g_firmware
45 Fujifilm apeosport_c6570_g_firmware
46 Fujifilm apeosport_c5570_g_firmware
47 Fujifilm apeosport_print_c5570_firmware
48 Fujifilm apeosport-vii_5021_firmware
49 Fujifilm apeosport-vii_p4021_firmware
50 Fujifilm apeosport-vii_4021_firmware
51 Fujifilm apeosport-vii_cp4421_firmware
52 Fujifilm apeosport-vii_c4421_firmware
53 Fujifilm apeosport-vii_c3321_firmware
54 Fujifilm apeosport-vii_c7773_firmware
55 Fujifilm apeosport-vii_c6773_firmware
56 Fujifilm apeosport-vii_c5573_firmware
57 Fujifilm apeosport-vii_c4473_firmware
58 Fujifilm apeosport-vii_c3373_firmware
59 Fujifilm apeosport-vii_c3372_firmware
60 Fujifilm apeosport-vii_c2273_firmware
61 Fujifilm apeosport-vii_c7788_firmware
62 Fujifilm apeosport-vii_c6688_firmware
63 Fujifilm apeosport-vii_c5588_firmware
64 Fujifilm apeospro_c810_firmware
65 Fujifilm apeospro_c750_firmware
66 Fujifilm apeospro_c650_firmware
67 Fujifilm apeosprint_c328_firmware
68 Fujifilm apeosprint_c328_dw_firmware
69 Fujifilm apeosprint_c325_dw_firmware
70 Fujifilm docucentre-vii_c7773_firmware
71 Fujifilm docucentre-vii_c6673_firmware
72 Fujifilm docucentre-vii_c5573_firmware
73 Fujifilm docucentre-vii_c4473_firmware
74 Fujifilm docucentre-vii_c3373_firmware
75 Fujifilm docucentre-vii_c3372_firmware
76 Fujifilm docucentre-vii_c2273_firmware
77 Fujifilm docucentre-vii_c7788_firmware
78 Fujifilm docucentre-vii_c6688_firmware
79 Fujifilm docucentre-vii_c5588_firmware
80 Fujifilm docuprint_4405_d_firmware
81 Fujifilm docuprint_4408_d_firmware
82 Fujifilm docuprint_3505_d_firmware
83 Fujifilm docuprint_3508_d_firmware
84 Fujifilm docuprint_3205_d_firmware
85 Fujifilm docuprint_3208_d_firmware
86 Fujifilm docuprint_c3555_d_firmware
87 Fujifilm docuprint_c2555_d_firmware
88 Fujifilm primelink_c9070_firmware
89 Fujifilm primelink_c9065_firmware
90 Fujifilm apeos_c7070
91 Fujifilm apeos_c6570
92 Fujifilm apeos_c5570
93 Fujifilm apeos_c4570
94 Fujifilm apeos_c3570
95 Fujifilm apeos_c3070
96 Fujifilm apeos_c7070_g
97 Fujifilm apeos_c6570_g
98 Fujifilm apeos_c5570_g
99 Fujifilm apeos_c4570_g
100 Fujifilm apeos_c3570_g
101 Fujifilm apeos_c3070_g
102 Fujifilm apeos_c328_df
103 Fujifilm apeos_c328_dw
104 Fujifilm apeos_c325_dw
105 Fujifilm apeos_c325_z
106 Fujifilm apeos_c8180
107 Fujifilm apeos_c7580
108 Fujifilm apeos_c6580
109 Fujifilm apeosport_3560
110 Fujifilm apeosport_3060
111 Fujifilm apeosport_2560
112 Fujifilm apeosport_3560_g
113 Fujifilm apeosport_3060_g
114 Fujifilm apeosport_2560_g
115 Fujifilm apeosport_4570_g
116 Fujifilm apeosport_5570_g
117 Fujifilm apeosport_4570
118 Fujifilm apeosport_5570
119 Fujifilm apeosport_c3060
120 Fujifilm apeosport_c2560
121 Fujifilm apeosport_c2060
122 Fujifilm apeosport_c2560_g
123 Fujifilm apeosport_c2060_g
124 Fujifilm apeosport_c7070
125 Fujifilm apeosport_c4570
126 Fujifilm apeosport_c3570
127 Fujifilm apeosport_c3070
128 Fujifilm apeosport_c6570
129 Fujifilm apeosport_c5570
130 Fujifilm apeosport_c7070_g
131 Fujifilm apeosport_c4570_g
132 Fujifilm apeosport_c3570_g
133 Fujifilm apeosport_c3070_g
134 Fujifilm apeosport_c6570_g
135 Fujifilm apeosport_c5570_g
136 Fujifilm apeosport_print_c5570
137 Fujifilm apeosport-vii_5021
138 Fujifilm apeosport-vii_p4021
139 Fujifilm apeosport-vii_4021
140 Fujifilm apeosport-vii_cp4421
141 Fujifilm apeosport-vii_c4421
142 Fujifilm apeosport-vii_c3321
143 Fujifilm apeosport-vii_c7773
144 Fujifilm apeosport-vii_c6773
145 Fujifilm apeosport-vii_c5573
146 Fujifilm apeosport-vii_c4473
147 Fujifilm apeosport-vii_c3373
148 Fujifilm apeosport-vii_c3372
149 Fujifilm apeosport-vii_c2273
150 Fujifilm apeosport-vii_c7788
151 Fujifilm apeosport-vii_c6688
152 Fujifilm apeosport-vii_c5588
153 Fujifilm apeospro_c810
154 Fujifilm apeospro_c750
155 Fujifilm apeospro_c650
156 Fujifilm apeosprint_c328
157 Fujifilm apeosprint_c328_dw
158 Fujifilm apeosprint_c325_dw
159 Fujifilm docucentre-vii_c7773
160 Fujifilm docucentre-vii_c6673
161 Fujifilm docucentre-vii_c5573
162 Fujifilm docucentre-vii_c4473
163 Fujifilm docucentre-vii_c3373
164 Fujifilm docucentre-vii_c3372
165 Fujifilm docucentre-vii_c2273
166 Fujifilm docucentre-vii_c7788
167 Fujifilm docucentre-vii_c6688
168 Fujifilm docucentre-vii_c5588
169 Fujifilm docuprint_4405_d
170 Fujifilm docuprint_4408_d
171 Fujifilm docuprint_3505_d
172 Fujifilm docuprint_3508_d
173 Fujifilm docuprint_3205_d
174 Fujifilm docuprint_3208_d
175 Fujifilm docuprint_c3555_d
176 Fujifilm docuprint_c2555_d
177 Fujifilm primelink_c9070
178 Fujifilm primelink_c9065
1 Canon imagerunner_firmware
2 Canon imageprograf_firmware
1 Rambus safezone_basic_crypto_module
: Total Affected Vendor : 3 | Products : 181
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2022-26320.

URL Resource
https://fermatattack.secvuln.info Third Party Advisory
https://global.canon/en/support/security/index.html Third Party Advisory
https://web.archive.org/web/20220922042721/https://safezoneswupdate.com/
https://www.fujifilm.com/fbglobal/eng/company/news/notice/2022/0302_rsakey_announce.html Mitigation Third Party Advisory
https://www.rambus.com/security/response-center/advisories/rmbs-2021-01/

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Profile Photo
google/paranoid_crypto

Paranoid's library contains implementations of checks for well known weaknesses on cryptographic artifacts.

cryptography security

Python C++ Dockerfile

Updated: 2 months, 2 weeks ago
784 stars 43 fork 43 watcher
Born at : May 9, 2022, 1:54 p.m. This repo has been linked 4 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2022-26320 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2022-26320 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by [email protected]

    Oct. 07, 2024

    Action Type Old Value New Value
    Added Reference MITRE https://www.rambus.com/security/response-center/advisories/rmbs-2021-01/ [No types assigned]
    Added Reference MITRE https://web.archive.org/web/20220922042721/https://safezoneswupdate.com/ [No types assigned]
    Removed Reference MITRE https://safezoneswupdate.com
  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • Initial Analysis by [email protected]

    Mar. 23, 2022

    Action Type Old Value New Value
    Added CVSS V2 NIST (AV:N/AC:L/Au:N/C:P/I:P/A:N)
    Added CVSS V3.1 NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
    Changed Reference Type https://fermatattack.secvuln.info No Types Assigned https://fermatattack.secvuln.info Third Party Advisory
    Changed Reference Type https://global.canon/en/support/security/index.html No Types Assigned https://global.canon/en/support/security/index.html Third Party Advisory
    Changed Reference Type https://safezoneswupdate.com No Types Assigned https://safezoneswupdate.com Mitigation, Vendor Advisory
    Changed Reference Type https://www.fujifilm.com/fbglobal/eng/company/news/notice/2022/0302_rsakey_announce.html No Types Assigned https://www.fujifilm.com/fbglobal/eng/company/news/notice/2022/0302_rsakey_announce.html Mitigation, Third Party Advisory
    Added CWE NIST CWE-330
    Added CPE Configuration OR *cpe:2.3:a:rambus:safezone_basic_crypto_module:*:*:*:*:non-fips_certified:*:*:* versions from (including) 9.3.0 up to (excluding) 10.4.0
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c7070_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c7070:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c6570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c6570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c5570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c5570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c4570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c4570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c3570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c3570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c3070_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c3070:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c7070_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c7070_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c6570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c6570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c5570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c5570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c4570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c4570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c3570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c3570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c3070_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.7 OR cpe:2.3:h:fujifilm:apeos_c3070_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c328_df_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 202112062053 OR cpe:2.3:h:fujifilm:apeos_c328_df:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c328_dw_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 202112062053 OR cpe:2.3:h:fujifilm:apeos_c328_dw:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c325_dw_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 202112062053 OR cpe:2.3:h:fujifilm:apeos_c325_dw:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c325_z_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 202112062053 OR cpe:2.3:h:fujifilm:apeos_c325_z:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c8180_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.6 OR cpe:2.3:h:fujifilm:apeos_c8180:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c7580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.6 OR cpe:2.3:h:fujifilm:apeos_c7580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeos_c6580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.6 OR cpe:2.3:h:fujifilm:apeos_c6580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_3560_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_3560:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_3060_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_3060:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_2560_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_2560:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_3560_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_3560_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_3060_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_3060_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_2560_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_2560_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_4570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_4570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_5570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_5570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_4570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_4570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_5570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_5570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c3060_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c3060:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c2560_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c2560:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c2060_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c2060:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c3060_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c3060:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c2560_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c2560_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c2060_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c2060_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c7070_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c7070:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c4570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c4570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c3570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c3570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c3070_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c3070:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c6570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c6570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c5570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c5570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c7070_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c7070_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c4570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c4570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c3570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c3570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c3070_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c3070_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c6570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c6570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_c5570_g_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_c5570_g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport_print_c5570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport_print_c5570:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_5021_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport-vii_5021:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_p4021_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport-vii_p4021:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_4021_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport-vii_4021:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_cp4421_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport-vii_cp4421:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c4421_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport-vii_c4421:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c3321_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.9 OR cpe:2.3:h:fujifilm:apeosport-vii_c3321:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c7773_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:apeosport-vii_c7773:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c6773_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:apeosport-vii_c6773:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c5573_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:apeosport-vii_c5573:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c4473_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:apeosport-vii_c4473:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c3373_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:apeosport-vii_c3373:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c3372_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:apeosport-vii_c3372:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c2273_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:apeosport-vii_c2273:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c7788_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.1 OR cpe:2.3:h:fujifilm:apeosport-vii_c7788:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c6688_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.1 OR cpe:2.3:h:fujifilm:apeosport-vii_c6688:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosport-vii_c5588_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.1 OR cpe:2.3:h:fujifilm:apeosport-vii_c5588:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeospro_c810_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.6 OR cpe:2.3:h:fujifilm:apeospro_c810:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeospro_c750_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.6 OR cpe:2.3:h:fujifilm:apeospro_c750:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeospro_c650_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.6 OR cpe:2.3:h:fujifilm:apeospro_c650:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosprint_c328_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 202112062117 OR cpe:2.3:h:fujifilm:apeosprint_c328:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosprint_c328_dw_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 202112062117 OR cpe:2.3:h:fujifilm:apeosprint_c328_dw:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:apeosprint_c325_dw_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 202112062117 OR cpe:2.3:h:fujifilm:apeosprint_c325_dw:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c7773_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:docucentre-vii_c7773:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c6673_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:docucentre-vii_c6673:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c5573_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:docucentre-vii_c5573:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c4473_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:docucentre-vii_c4473:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c3373_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:docucentre-vii_c3373:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c3372_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:docucentre-vii_c3372:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c2273_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.2 OR cpe:2.3:h:fujifilm:docucentre-vii_c2273:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c7788_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.1 OR cpe:2.3:h:fujifilm:docucentre-vii_c7788:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c6688_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.1 OR cpe:2.3:h:fujifilm:docucentre-vii_c6688:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docucentre-vii_c5588_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.60.1 OR cpe:2.3:h:fujifilm:docucentre-vii_c5588:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docuprint_4405_d_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.57.5 OR cpe:2.3:h:fujifilm:docuprint_4405_d:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docuprint_4408_d_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.57.5 OR cpe:2.3:h:fujifilm:docuprint_4408_d:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docuprint_3505_d_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.57.5 OR cpe:2.3:h:fujifilm:docuprint_3505_d:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docuprint_3508_d_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.57.5 OR cpe:2.3:h:fujifilm:docuprint_3508_d:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docuprint_3205_d_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.57.5 OR cpe:2.3:h:fujifilm:docuprint_3205_d:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docuprint_3208_d_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.57.5 OR cpe:2.3:h:fujifilm:docuprint_3208_d:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docuprint_c3555_d_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.57.6 OR cpe:2.3:h:fujifilm:docuprint_c3555_d:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:docuprint_c2555_d_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.57.6 OR cpe:2.3:h:fujifilm:docuprint_c2555_d:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:primelink_c9070_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.145.1 OR cpe:2.3:h:fujifilm:primelink_c9070:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:fujifilm:primelink_c9065_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.145.1 OR cpe:2.3:h:fujifilm:primelink_c9065:-:*:*:*:*:*:*:*
    Added CPE Configuration OR *cpe:2.3:o:canon:imagerunner_firmware:*:*:*:*:*:*:*:* versions up to (including) 2020-03-14
    Added CPE Configuration OR *cpe:2.3:o:canon:imageprograf_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2020-03-14
  • CVE Modified by [email protected]

    Mar. 15, 2022

    Action Type Old Value New Value
    Changed Description The Rambus SafeZone Basic Crypto Module before 10.4.0, as used in certain Fujifilm (formerly Fuji Xerox) devices before 2022-03-01 and potentially many other devices, generates RSA keys that can be broken with Fermat's factorization method. This allows efficient calculation of private RSA keys from the public key of a TLS certificate. The Rambus SafeZone Basic Crypto Module before 10.4.0, as used in certain Fujifilm (formerly Fuji Xerox) devices before 2022-03-01, Canon imagePROGRAF and imageRUNNER devices through 2022-03-14, and potentially many other devices, generates RSA keys that can be broken with Fermat's factorization method. This allows efficient calculation of private RSA keys from the public key of a TLS certificate.
    Added Reference https://global.canon/en/support/security/index.html [No Types Assigned]
  • CVE Modified by [email protected]

    Mar. 15, 2022

    Action Type Old Value New Value
    Changed Description The Rambus SafeZone Basic Crypto Module, as used in certain Fujifilm (formerly Fuji Xerox) devices before 2022-03-01 and potentially many other devices, generates RSA keys that can be broken with Fermat's factorization method. This allows efficient calculation of private RSA keys from the public key of a TLS certificate. The Rambus SafeZone Basic Crypto Module before 10.4.0, as used in certain Fujifilm (formerly Fuji Xerox) devices before 2022-03-01 and potentially many other devices, generates RSA keys that can be broken with Fermat's factorization method. This allows efficient calculation of private RSA keys from the public key of a TLS certificate.
    Added Reference https://safezoneswupdate.com [No Types Assigned]
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2022-26320 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2022-26320 weaknesses.

Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

0.20 }} 0.03%

score

0.58175

percentile

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
: