PatchSiren cyber security CVE debrief
CVE-2026-9261 Canon Inc. CVE debrief
CVE-2026-9261 is a HIGH severity vulnerability with a CVSS score of 7.6. It was published on 2026-06-16T00:16:35.887Z and has not been modified since its publication. The vulnerability affects Canon EOS Network Setting Tool Version 1.5.0 or earlier and is related to the use of weak SSH cryptographic algorithms. The Common Weakness Enumeration (CWE) for this vulnerability is CWE-327.
- Vendor
- Canon Inc.
- Product
- EOS Network Setting Tool for Windows
- CVSS
- HIGH 7.6
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-18
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-18
Who should care
Users of Canon EOS Network Setting Tool Version 1.5.0 or earlier should be aware of this vulnerability and take necessary actions to mitigate it.
Technical summary
The vulnerability is caused by the use of weak SSH cryptographic algorithms in Canon EOS Network Setting Tool Version 1.5.0 or earlier. This could allow an attacker to compromise the security of the system.
Defensive priority
HIGH
Recommended defensive actions
- Users should update Canon EOS Network Setting Tool to a version that is not vulnerable.
- If an update is not available, users should consider using alternative tools or workarounds to minimize the risk.
Evidence notes
The evidence for this CVE comes from the National Vulnerability Database (NVD) and the CVE.org website.
Official resources
-
CVE-2026-9261 CVE record
CVE.org
-
CVE-2026-9261 NVD detail
NVD
-
Source item URL
nvd_modified
-
Source reference
f98c90f0-e9bd-4fa7-911b-51993f3571fd
-
Source reference
f98c90f0-e9bd-4fa7-911b-51993f3571fd
-
Source reference
f98c90f0-e9bd-4fa7-911b-51993f3571fd
-
Source reference
f98c90f0-e9bd-4fa7-911b-51993f3571fd
This CVE debrief is based on information from the supplied source corpus and official links. No raw URLs are included in this text, and all source links are cited using resourceLinkAnnotations.