Windows Network File System Vulnerability (CVE-2022-24491)
Canon Medical Systems Security Advisory
Overview:
It was announced that there is security vulnerability that affects Windows Network File System (NFS). A remote code execution vulnerability exists when an attacker sends a specially crafted NFS protocol network message to a vulnerable Windows machine. An attacker who successfully exploited this vulnerability could run arbitrary code.
REF: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24491
Vulnerability Overview:
This vulnerability is only exploitable for systems that have the NFS role enabled. An attacker could send a specially crafted NFS protocol network message to a vulnerable Windows machine, which could enable remote code execution.
Possible Affected Canon Medical Systems Products:
Affected Canon Medical Systems Products
・ None (There are no products which the NFS role has been enabled.)
Canon Medical Products under investigation
・ None
Resolution:
・ None
Due to medical device regulatory reasons, not all products/service displayed on this Canon Medical Systems Malaysia webpage are available in all countries, regions or markets. Future availability of the products/service cannot also be guaranteed. Please contact your local Canon Medical Systems representative for further details.
