CVE-2019-14305
Description
Several Ricoh printers have multiple buffer overflows parsing HTTP parameter settings for Wi-Fi, mDNS, POP3, SMTP, and notification alerts, which allow an attacker to cause a denial of service or code execution via crafted requests to the web server. Affected firmware versions depend on the printer models. One affected configuration is cpe:2.3:o:ricoh:sp_c250dn_firmware:-:*:*:*:*:*:*:* up to (including) 1.06 running on cpe:2.3:o:ricoh:sp_c250dn:-:*:*:*:*:*:*:*, cpe:2.3:o:ricoh:sp_c252dn:-:*:*:*:*:*:*:*. Another affected configuration is cpe:2.3:o:ricoh:sp_c250sf_firmware:-:*:*:*:*:*:*:* up to (including) 1.12 running on cpe:2.3:o:ricoh:sp_c250sf:-:*:*:*:*:*:*:*, cpe:2.3:o:ricoh:sp_c252sf:-:*:*:*:*:*:*:*.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A remote attacker can cause denial of service or execute arbitrary code on multiple Ricoh printers via crafted HTTP parameters due to buffer overflows in Wi-Fi, mDNS, POP3, SMTP, and alert settings.
Vulnerability
The vulnerability is a buffer overflow (CWE-119) in the HTTP parameter parsing for Wi-Fi, mDNS, POP3, SMTP, and alert notification settings on the web server of multiple Ricoh printers and MFPs. The affected firmware versions vary by model, e.g., SP C250DN firmware up to and including version 1.06, and SP C250SF firmware up to and including version 1.12. A wide range of Ricoh products are affected. The issue is identified as CVE-2019-14305 [1].
Exploitation
An attacker can exploit this vulnerability remotely over a network without authentication or user interaction. The attacker sends a crafted HTTP request with a malicious parameter to the web server of an affected device. The buffer overflow occurs during the parsing of this parameter, which can corrupt memory. No special network position is required beyond network access to the printer's web interface [1].
Impact
Successful exploitation can lead to denial of service (DoS) or arbitrary code execution on the device. An attacker gaining code execution could potentially achieve full compromise of the printer, with high impacts on confidentiality, integrity, and availability. The CVSS v3 base score is 9.8 (Critical) [1].
Mitigation
The vendor recommends updating the device firmware to the latest version provided by Ricoh. The solution is to apply the appropriate firmware update according to the information provided by the developer on the Ricoh support site [1] [2]. Users should check the Ricoh support and downloads page for their specific model to obtain the fix. No workarounds are described in the available references, and the devices are not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog as of the last update.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Ricoh/printersdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- jvn.jp/en/jp/JVN11708203/index.htmlmitrethird-party-advisoryx_refsource_JVN
- www.ricoh-usa.com/en/support-and-downloadmitrex_refsource_MISC
- www.ricoh.com/info/2019/0823_1/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.