CL4NX 1279x308

Technical Advisory

Additional Notice Regarding the Security Vulnerability Discovered in CL4/6NX Plus Printers

In addition to the previously identified vulnerabilities (CWE-22, CWE-287, and CWE-863), two new vulnerabilities, CWE-78 and CWE-434, have been confirmed.

Appropriate countermeasures for these newly identified issues have already been implemented.

For further details, please refer to the Solution or the Workaround Methods section or contact us by clicking the button below if you have additional questions.

Affected Printers

  • CL4/6NX PLUS
  • CL4/6NX-J Plus (Japan model)

Details

Some SATO label printers were found to have vulnerabilities related to incorrect/improper authorisation (CWE-863, CWE-287) and path traversal (CWE-22), which may lead to unauthorised setting changes and file tampering, potentially impacting how the printers operate.

There are no known cases of these vulnerabilities being exploited, and printer users are not at risk of data tampering or information exposure as long as users take measures to protect their systems from unauthorised access. However, we advise users to apply the following solution to their printers for improved security.

Solution

We are releasing a new printer firmware update to patch the vulnerabilities. For information on updating the firmware, please contact your nearest SATO representative or the distributor where you purchased the printer. Please contact us to arrange for an appointment.

Workaround Method

Users can work around the vulnerabilities by enabling the printer’s firewall and disabling the WebConfig function, if they are unable to install the firmware update due to certain technical reasons. Please note that the workaround is temporary, and you should ideally remediate the vulnerabilities through the security patch as soon as your situation allows.

Please follow the steps below to apply the workaround. For more information, you may also refer to the “Various Settings of the Product” section in our online user manual.

 

Access User Manual
  • Enable Firewall

    Go to the printer’s Settings menu and click Interface> Network> Advanced> Firewall> Enable

  • Disable WebConfig (function for viewing or changing printer settings via web browser)

    Go to the printer’s Settings menu and click Interface> Network> Advanced> Firewall> Allow Services and Ports> WebConfig> Disable

Let us help you with your
barcode and printing solutions!

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Vivamus at dolor diam. Fusce iaculis convallis bibendum. Etiam in libero lobortis, semper dui sit amet, accumsan nunc. 

let-us-help-image