CVE Catalog

CVE-2026-9259

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.17%

6th percentile - higher than 6% of all known CVEs

Summary

The Canon EOS Network Setting Tool version 1.5.0 or earlier has improper validation of server certificates. This can lead to man-in-the-middle attacks.

Risk Assessment

Improper validation of certificates may allow attackers to intercept data transmitted between the user and the server, posing a serious threat to information security.

Recommendation

It is recommended to update the Canon EOS Network Setting Tool to the latest version to ensure proper validation of server certificates.

Original NVD description (English source)

Improper validation of server certificates in Canon EOS Network Setting Tool Version 1.5.0 or earlier

Vulnerability data from NVD (NIST) · CISA KEV · EPSS