CVE-2026-9262

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-9262
Use of a non-secure protocol as the default FTP configuration in Canon EOS Network Setting Tool Version 1.5.0 or earlier

6.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://canon.jp/support/support-info/260615vulnerability-response Vendor Advisory
https://psirt.canon/advisory-information/cp2026-005/ Vendor Advisory
https://www.canon-europe.com/support/product-security/ Vendor Advisory
https://www.usa.canon.com/about-us/to-our-customers/cpa2026-005-vulnerability-remediation-for-eos-network-setting-tool Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:canon:eos_network_setting_tool:*:*:*:*:*:*:*:*
OR cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
History

18 Jun 2026, 17:09

Type Values Removed Values Added
First Time Canon
Apple macos
Apple
Microsoft windows
Canon eos Network Setting Tool
Microsoft
CPE cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:a:canon:eos_network_setting_tool:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
References () https://canon.jp/support/support-info/260615vulnerability-response - () https://canon.jp/support/support-info/260615vulnerability-response - Vendor Advisory
References () https://psirt.canon/advisory-information/cp2026-005/ - () https://psirt.canon/advisory-information/cp2026-005/ - Vendor Advisory
References () https://www.canon-europe.com/support/product-security/ - () https://www.canon-europe.com/support/product-security/ - Vendor Advisory
References () https://www.usa.canon.com/about-us/to-our-customers/cpa2026-005-vulnerability-remediation-for-eos-network-setting-tool - () https://www.usa.canon.com/about-us/to-our-customers/cpa2026-005-vulnerability-remediation-for-eos-network-setting-tool - Vendor Advisory

16 Jun 2026, 00:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-06-16 00:16

Updated : 2026-06-18 17:09

NVD link : CVE-2026-9262

Mitre link : CVE-2026-9262

CVE.ORG link : CVE-2026-9262

JSON object : View

Products Affected

canon

  • eos_network_setting_tool

microsoft

  • windows

apple

  • macos
CWE
CWE-1188

Insecure Default Initialization of Resource