Canon has issued a warning about a critical security vulnerability in its printer drivers that could allow attackers to inject and execute malicious code.

The affected drivers include Generic Plus PCL6, UFR II, LIPS4, LIPSXL, and PS versions 3.12 and earlier, which are utilized in various Canon production and office multifunction printers.

A warning was also issued regarding multiple buffer overflow vulnerabilities in Canon Laser Printers and Small Office Multifunction Printers, especially if these devices are directly connected to the Internet.

This vulnerability, tracked as CVE-2025-1268, has a high CVSS severity score of 9.4, indicating a significant risk.

The flaw is particularly dangerous because it can be exploited in Bring Your Own Vulnerable Driver (BYOVD) attacks, allowing attackers to gain elevated privileges through legitimate but vulnerable drivers.

Exploitation of this vulnerability could enable attackers to prevent printing or execute arbitrary code during the print process, leading to severe security breaches.

The out-of-bounds vulnerability can result in memory corruption, allowing the injection and execution of malicious code when processing print jobs.

Users are advised to promptly install updated drivers, implement network segmentation for critical systems, and utilize Endpoint Detection and Response (EDR) solutions to monitor endpoint activity.

Additionally, users should update their printer firmware by following specific steps based on their printer's display type to mitigate these critical security risks.

Affected firmware includes models from the Imageclass MF series, such as MF455DW, MF453DW, and others, along with Imageclass LBP models.

In February, HP also warned about similar vulnerabilities in its PCL6 and Postscript universal drivers, highlighting the urgency for users to update.

Driver vulnerabilities pose significant threats to users and organizations, often exploited in attacks that leverage the BYOVD technique.