Apache Commons vulnerability
CVE-2022-42889 and CVE-2022-33980

Last updated: 22 November 2022

We have assessed the potential impact of Apache Commons Text and Apache Commons Configurations [CVE-2022-42889 and CVE-2022-33980] on Canon Production Printing (CPP) products and services.  If software has been installed in a virtual VMware environment, please check the VMware vendor advisories.

The table below gives the vulnerability status for the Canon Production Printing hardware and software products listed.

Products assessed and status

Cutsheet and Toner Systems/Inkjet Sheetfed Press

Products Status
PRISMAsync print server based products Not impacted
varioPRINT 140 series Not impacted
varioPRINT 6000 series Not impacted
varioPRINT i-series Not impacted
varioPRINT iX-series Not impacted
Service Control Station (SCS) for VPi300 series and VPiX  series Not impacted
Tablet for VPi300 series and VPiX series Not impacted
PRISMAsync i300/iX Simulator Not impacted
PRISMAprepare V6 Not impacted
PRISMAprepare V7 Not impacted
PRISMAprepare V8 Not impacted
PRISMAdirect V1 Under investigation
PRISMAprofiler Under investigation
PRISMAcolor Under investigation
PRISMAorder Flex
PRISMAprepare Go
PRISMAlytics Accounting
PRISMAlytics Dashboard
Under investigation

Continuous Printing

Products Status
ColorStream 3×00 Not impacted
ColorStream 3000Z/ColorStream 6000 Not impacted
ColorStream 8000 Not impacted
ProStream 1×00 Not impacted
LabelStream 4000 series Not impacted
JetStream V1/JetStream V2 Not impacted
VarioStream 4000 Not impacted
VarioStream 7000 series Not impacted
VarioStream 8000 Not impacted
PRISMAproduction Server V5/PRISMAcontrol V5 Not impacted
PRISMAproduction Server V6.1 Not impacted
PRISMAproduction Host,CIS and router Not impacted
PRISMAspool Not impacted
DocSetter Not impacted
PRISMAsimulate Under investigation
DPconvert Not impacted
TrueProof Under investigation

Large Format Graphics

Products Status
Arizona series Not impacted
Colorado series Not impacted

Technical Documentation Systems

Products Status
PlotWave series Not impacted
PlotWave series (PW750/900) Not impacted
ColorWave series Not impacted
ColorWave series (CW810/910) Not impacted
Scanner Professional Under investigation
Driver Select, Driver Express, Publisher Mobile Under investigation
Publisher Select Not impacted
Account Console Under investigation
Repro Desk Under investigation

Service & Support Tools

Products Status
On Remote Service Under investigation
Technical Service Manual Not impacted
Advisory Dashboard – Analysis & Maintenance Under investigation