Advisories and Notifications

Description:
OpenSSL has identified a vulnerability in which a malicious user can supply a Cryptographic Message Syntax (CMS) message with an oversized Initialization Vector (IV). OpenSSL copies this IV into a fixed‑size stack buffer without validating its length, resulting in a stack buffer overflow. This vulnerability affects OpenSSL’s parsing of CMS AuthEnvelopedData and EnvelopedData structures that use Authenticated Encryption with Associated Data (AEAD) ciphers such as AES‑GCM.

The potential impacts of this vulnerability include:
• Denial of Service (DoS) due to application crashes
• Potential remote code execution, depending on platform mitigations
• No valid key material required by the attacker, as the stack buffer overflow occurs before authentication

IRIS has taken this vulnerability seriously and confirmed that one of its products uses OpenSSL. The affected product is IRIS XMailFetcher.

Affected Versions:
IRIS XMailFetcher: Version 5.0.29 and earlier.

Remediation/Mitigation:
IRIS has released IRIS XMailFetcher version 5.0.30, a security update that addresses this vulnerability (CVE‑2025‑15467).

This release includes no additional changes or new features and is focused solely on resolving this issue.

We strongly recommend updating to version 5.0.30 as soon as possible. If you require assistance with the update, please contact our support team.

The fix is available under “download center” and the communication can be found under “Technical News” in the IRIS Partner Portal, under the headline: “IRIS XMailFetcher 5.0.30 – CVE‑2025‑15467 Fix”.

Please note that IRIS resolved this issue by releasing the fix on 19 February 2026.

There have been no reports of this vulnerability being exploited in the wild. However, to enhance product security, we advise all customers to install the latest IRIS XMailFetcher version 5.0.30.

CVE/CVSS:
CVE-2025-15467: A stack buffer overflow vulnerability in OpenSSL affecting the parsing of CMS AuthEnvelopedData and EnvelopedData messages. CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Base Score: 9.3.

Description:
Therefore Corporation GmbH has recently become aware that Therefore™ Online and Therefore™ On-Premises contain an account impersonation vulnerability. A malicious user may potentially be able to impersonate the web service account or the account of a service using the API when connecting to the Therefore™ Server. If the malicious user gains this impersonation user access, then it is possible for them to access the documents stored in Therefore™. This impersonation is at application level (Therefore access level), not the operating system level.

Affected Versions:
All Therefore™ Online and Therefore™ On-Premises versions.

Remediation/Mitigation:
For Therefore™ Online systems, customers have already been patched. No further action is required from users or administrators.

For Therefore™ On-Premises systems, a hotfix is available to install. We strongly recommend patching all Therefore™ On-Premises systems, regardless of version. We request our customers to please contact your local Canon office or authorized reseller partner for more information.

Please note that Therefore Corporation GmbH resolved this issue by releasing a hotfix on 20 October 2025.

CVE/CVSS:
CVE-2025-11843: Therefore™ Online and Therefore™ On-Premises contains an account impersonation issue, which could potentially allow the attacker to access all the stored data.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N Base Score: 8.8.

Canon U.S.A., Inc. has recently become aware that the Canon EOS Webcam Utility Pro for MAC OS contains an improper directory permissions vulnerability. Exploitation of this potential vulnerability requires administrator access by a malicious user. An attacker could modify the directory, potentially resulting in code execution and ultimately leading to privilege escalation.

Whilst we have not received any reports of exploitation, we recommend that you read the security advisory link.

Details of the vulnerability, mitigation and remediation can be found at:

Security Advisory: Vulnerability Mitigation/Remediation for Canon EOS Webcam Utility Pro for MAC OS

A potential issue of the uniqueness of an ID card has been identified in the card readers rebranded by NT-ware (originally developed and provided by rf IDEAS) and published CVE-2024-1578.

Whilst we have not received any reports of exploitation, we recommend that you read the security advisory link.

Details of the vulnerability, mitigation and remediation can be found at:

Security Advisory: Multiple MiCard PLUS card reader dropped characters

A potential susceptibility to compromise in device registration has been identified in uniFLOW Online and published CVE-2024-1621.

Whilst we have not received any reports of exploitation, we recommend that you read the security advisory link.

Details of the vulnerability, mitigation and remediation can be found at:

Security Advisory: Device registration susceptible to compromise

A potential data exposure vulnerability has been identified in uniFLOW Server and uniFLOW Remote Print Server.

Whilst we have not received any reports of exploitation, we recommend that you upgrade your implementation to the latest version.

Details of the vulnerability, mitigation and remediation can be found at:

Security Advisory: MOM Tech Support Vulnerability - NT-ware Support