SATO Label Printer Vulnerability Response Update
This document provides an update on security vulnerabilities affecting SATO label printers.
Additional Notice Regarding Vulnerability Response for SATO Label Printers
Date: August 4, 2025
Company: SATO Corporation
Thank you for your continued patronage of SATO products.
In addition to the previously confirmed vulnerabilities (CWE-22, CWE-287, CWE-863), new vulnerabilities CWE-78 and CWE-434 have been identified. SATO has already implemented the necessary measures.
For detailed information on countermeasures and workarounds, please refer to the announcement dated September 30, 2024.
Original Notice: Vulnerability Response for SATO Label Printers
Date: September 30, 2024
Company: SATO Corporation
Thank you for your continued patronage of SATO products.
Multiple vulnerabilities have been confirmed in certain SATO label printer models, including unauthorized authentication (CWE-863, CWE-287) and data check issues (CWE-22). These vulnerabilities could potentially lead to unintended setting changes or file tampering within your system environment, affecting product operation. Currently, there is no confirmed damage from data tampering or information leakage, provided unauthorized access via your system is prevented.
To ensure you can use SATO products with greater confidence, we are providing the following countermeasures and workarounds.
Affected Products
- ScaenTronics CL4/6NX-J Plus Series
- ScaenTronics CL4/6NX Plus Series (Overseas models)
Countermeasures
Applying the following measures can disable these vulnerabilities:
- Apply updated firmware.
After updating the printer's firmware, you may need to reconfigure various settings, such as print position and supply settings. SATO Customer Engineers (CE) will perform the firmware update. Please contact the inquiry contact or your assigned SATO CE to request this service.
Workarounds
If you are unable to apply the updated firmware for any reason, the following workarounds can mitigate the vulnerabilities. SATO still recommends applying the updated firmware. Please contact us or your assigned SATO CE when firmware application becomes possible.
- Enable the firewall function and disable the WebConfig function.
This workaround does not require firmware updates. For instructions on enabling the firewall and disabling WebConfig, please refer to the following online manual:
Online Manual: https://www.sato.co.jp/webmanual/printer/clnx-jplus/main/toc.html
Firewall Settings: Navigate to the product's [Settings] Menu > [Communication Settings] Menu > [Network] > [Advanced Settings] > [Firewall] > [Enable].
WebConfig Settings: Navigate to the product's [Settings] Menu > [Communication Settings] Menu > [Network] > [Advanced Settings] > [Firewall] > [Permitted Services/Ports] > [WebConfig] > [Disable].
Contact Information
For inquiries regarding this matter:
Phone Inquiry: 0120-696310 (Available 24 hours, 365 days)
Inquiry Form: https://www.sato.co.jp/contact/support/
