CVE & CISA-KEV Catalog

CVE-2022-26320

CRITICAL
9.1
CVSS v3
NVD

Description

The Rambus SafeZone Basic Crypto Module before 10.4.0, as used in certain Fujifilm (formerly Fuji Xerox) devices before 2022-03-01, Canon imagePROGRAF and imageRUNNER devices through 2022-03-14, and potentially many other devices, generates RSA keys that can be broken with Fermat's factorization method. This allows efficient calculation of private RSA keys from the public key of a TLS certificate.

How to fix

Remediation Available
apeos c3070 firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c3070 g firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c325 dw firmwareNVD
Affected:< 202112062053Fixed in:202112062053CVE-2022-26320derived from NVD
apeos c325 z firmwareNVD
Affected:< 202112062053Fixed in:202112062053CVE-2022-26320derived from NVD
apeos c328 df firmwareNVD
Affected:< 202112062053Fixed in:202112062053CVE-2022-26320derived from NVD
apeos c328 dw firmwareNVD
Affected:< 202112062053Fixed in:202112062053CVE-2022-26320derived from NVD
apeos c3570 firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c3570 g firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c4570 firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c4570 g firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c5570 firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c5570 g firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c6570 firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c6570 g firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c6580 firmwareNVD
Affected:< 1.1.6Fixed in:1.1.6CVE-2022-26320derived from NVD
apeos c7070 firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c7070 g firmwareNVD
Affected:< 1.1.7Fixed in:1.1.7CVE-2022-26320derived from NVD
apeos c7580 firmwareNVD
Affected:< 1.1.6Fixed in:1.1.6CVE-2022-26320derived from NVD
apeos c8180 firmwareNVD
Affected:< 1.1.6Fixed in:1.1.6CVE-2022-26320derived from NVD
apeosport-vii 4021 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport-vii 5021 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport-vii c2273 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
apeosport-vii c3321 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport-vii c3372 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
apeosport-vii c3373 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
apeosport-vii c4421 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport-vii c4473 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
apeosport-vii c5573 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
apeosport-vii c5588 firmwareNVD
Affected:< 1.60.1Fixed in:1.60.1CVE-2022-26320derived from NVD
apeosport-vii c6688 firmwareNVD
Affected:< 1.60.1Fixed in:1.60.1CVE-2022-26320derived from NVD
apeosport-vii c6773 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
apeosport-vii c7773 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
apeosport-vii c7788 firmwareNVD
Affected:< 1.60.1Fixed in:1.60.1CVE-2022-26320derived from NVD
apeosport-vii cp4421 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport-vii p4021 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 2560 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 2560 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 3060 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 3060 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 3560 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 3560 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 4570 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 4570 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 5570 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport 5570 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c2060 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c2060 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c2560 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c2560 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c3060 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c3070 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c3070 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c3570 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c3570 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c4570 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c4570 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c5570 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c5570 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c6570 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c6570 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c7070 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport c7070 g firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosport print c5570 firmwareNVD
Affected:< 1.60.9Fixed in:1.60.9CVE-2022-26320derived from NVD
apeosprint c325 dw firmwareNVD
Affected:< 202112062117Fixed in:202112062117CVE-2022-26320derived from NVD
apeosprint c328 dw firmwareNVD
Affected:< 202112062117Fixed in:202112062117CVE-2022-26320derived from NVD
apeosprint c328 firmwareNVD
Affected:< 202112062117Fixed in:202112062117CVE-2022-26320derived from NVD
apeospro c650 firmwareNVD
Affected:< 1.1.6Fixed in:1.1.6CVE-2022-26320derived from NVD
apeospro c750 firmwareNVD
Affected:< 1.1.6Fixed in:1.1.6CVE-2022-26320derived from NVD
apeospro c810 firmwareNVD
Affected:< 1.1.6Fixed in:1.1.6CVE-2022-26320derived from NVD
docucentre-vii c2273 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
docucentre-vii c3372 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
docucentre-vii c3373 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
docucentre-vii c4473 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
docucentre-vii c5573 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
docucentre-vii c5588 firmwareNVD
Affected:< 1.60.1Fixed in:1.60.1CVE-2022-26320derived from NVD
docucentre-vii c6673 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
docucentre-vii c6688 firmwareNVD
Affected:< 1.60.1Fixed in:1.60.1CVE-2022-26320derived from NVD
docucentre-vii c7773 firmwareNVD
Affected:< 1.60.2Fixed in:1.60.2CVE-2022-26320derived from NVD
docucentre-vii c7788 firmwareNVD
Affected:< 1.60.1Fixed in:1.60.1CVE-2022-26320derived from NVD
docuprint 3205 d firmwareNVD
Affected:< 1.57.5Fixed in:1.57.5CVE-2022-26320derived from NVD
docuprint 3208 d firmwareNVD
Affected:< 1.57.5Fixed in:1.57.5CVE-2022-26320derived from NVD
docuprint 3505 d firmwareNVD
Affected:< 1.57.5Fixed in:1.57.5CVE-2022-26320derived from NVD
docuprint 3508 d firmwareNVD
Affected:< 1.57.5Fixed in:1.57.5CVE-2022-26320derived from NVD
docuprint 4405 d firmwareNVD
Affected:< 1.57.5Fixed in:1.57.5CVE-2022-26320derived from NVD
docuprint 4408 d firmwareNVD
Affected:< 1.57.5Fixed in:1.57.5CVE-2022-26320derived from NVD
docuprint c2555 d firmwareNVD
Affected:< 1.57.6Fixed in:1.57.6CVE-2022-26320derived from NVD
docuprint c3555 d firmwareNVD
Affected:< 1.57.6Fixed in:1.57.6CVE-2022-26320derived from NVD
imageprograf firmwareNVD
Affected:< 2020-03-14Fixed in:2020-03-14CVE-2022-26320derived from NVD
primelink c9065 firmwareNVD
Affected:< 1.145.1Fixed in:1.145.1CVE-2022-26320derived from NVD
primelink c9070 firmwareNVD
Affected:< 1.145.1Fixed in:1.145.1CVE-2022-26320derived from NVD
safezone basic crypto moduleNVD
Affected:>= 9.3.0, < 10.4.0Fixed in:10.4.0CVE-2022-26320derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityHigh
IntegrityHigh
AvailabilityNone

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Exploit Intelligence

0.86%probability of exploitation in 30 days
54thpercentile

Moderate risk: more likely to be exploited than 54% of all known CVEs.

References

Related Vulnerabilities

Other CWE-330 vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2019-5420Critical9.892%-Fix
CVE-2021-34646Critical9.851%--
CVE-2017-6026Critical9.132%--
CVE-2008-0087High7.531%--
CVE-2018-17888Critical9.830%--
CVE-2020-11901Critical9.021%-Fix
Embed a live status badge for CVE-2022-26320
CVE-2022-26320 severity badge

Markdown

[![CVE-2022-26320](https://tridentstack.com/cve/badge/CVE-2022-26320.svg)](https://tridentstack.com/cve/CVE-2022-26320)

HTML

<a href="https://tridentstack.com/cve/CVE-2022-26320"><img src="https://tridentstack.com/cve/badge/CVE-2022-26320.svg" alt="CVE-2022-26320"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.