Out-of-bounds write vulnerability exists in Ricoh MFPs and printers. If a remote attacker sends a specially crafted request to the affected products, the products may be able to cause a denial-of-service (DoS) condition and/or user's data may be destroyed.
Out-of-bounds write vulnerability exists in Ricoh MFPs and printers. If a remote attacker sends a specially crafted request to the affected products, the products may be able to cause a denial-of-service (DoS) condition and/or user's data may be destroyed.
| Vendor | Product | Versions |
|---|---|---|
| Ricoh Company, Ltd. | IM C3510/C3010 | prior to System/Copy 2.00-00 |
| Ricoh Company, Ltd. | IM C6010/C5510/C4510 | prior to System/Copy 2.00-00 |
| Ricoh Company, Ltd. | IM C2510/C2010 | prior to System/Copy 2.00-00 |
| Ricoh Company, Ltd. | IM C7010 | prior to System/Copy 1.05-00 |
| Ricoh Company, Ltd. | IM 460F/460FTL/370/370F | prior to System/Copy 1.10-00 |
| Ricoh Company, Ltd. | IM C8500/C8510M/C8500/C8500M | prior to System 1.04-00 |
Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.
For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.
Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:
No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.