cvedb.io
CVE-2021-38085
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2021-08-11T18:15:07.500 · Last modified 2026-06-17T04:01:26.170

Summary

The Canon TR150 print driver through 3.71.2.10 is vulnerable to a privilege escalation issue. During the add printer process, a local attacker can overwrite CNMurGE.dll and, if timed properly, the overwritten DLL will be loaded into a SYSTEM process resulting in escalation of privileges. This occurs because the driver drops a world-writable DLL into a CanonBJ %PROGRAMDATA% location that gets loaded by printisolationhost (a system process).

Affected products

canon — pixma_tr150_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when canon ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.