CVE Catalog

CVE-2026-9262

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.27%

18th percentile — higher than 18% of all known CVEs

Summary

The Canon EOS Network Setting Tool version 1.5.0 or earlier uses a non-secure protocol as the default FTP configuration. This may lead to unauthorized access to data transmitted via FTP.

Risk Assessment

The use of an unencrypted FTP protocol exposes the organization to the risk of data interception and man-in-the-middle attacks. This can result in a loss of confidentiality of information.

Recommendation

It is recommended to update the Canon EOS Network Setting Tool to the latest version and configure a secure FTP protocol or an alternative encrypted solution.

Original NVD description (English source)

Use of a non-secure protocol as the default FTP configuration in Canon EOS Network Setting Tool Version 1.5.0 or earlier

Vulnerability data from NVD (NIST) · CISA KEV · EPSS