Unrated severityNVD Advisory· Published Aug 26, 2019· Updated Aug 5, 2024

CVE-2019-14307

Description

Several Ricoh printers have multiple buffer overflows parsing HTTP parameter settings for SNMP, which allow an attacker to cause a denial of service or code execution via crafted requests to the web server. Affected firmware versions depend on the printer models. One affected configuration is cpe:2.3:o:ricoh:sp_c250dn_firmware:-:*:*:*:*:*:*:* up to (including) 1.06 running on cpe:2.3:o:ricoh:sp_c250dn:-:*:*:*:*:*:*:*, cpe:2.3:o:ricoh:sp_c252dn:-:*:*:*:*:*:*:*. Another affected configuration is cpe:2.3:o:ricoh:sp_c250sf_firmware:-:*:*:*:*:*:*:* up to (including) 1.12 running on cpe:2.3:o:ricoh:sp_c250sf:-:*:*:*:*:*:*:*, cpe:2.3:o:ricoh:sp_c252sf:-:*:*:*:*:*:*:*.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Buffer overflow in SNMP HTTP parameter parsing in multiple Ricoh printers allows remote unauthenticated attackers to cause denial of service or execute arbitrary code.

Vulnerability

Multiple Ricoh printers and MFPs contain a buffer overflow vulnerability (CWE-119) in the parsing of HTTP parameter settings for SNMP. Specifically, the web server does not properly validate input when processing SNMP-related HTTP parameters, leading to a buffer overflow. Affected models include the SP C250dn (firmware up to version 1.06), SP C252dn, SP C250sf (firmware up to 1.12), SP C252sf, and a wide range of other Ricoh printers and MFPs as detailed in the vendor advisory [1].

Exploitation

An unauthenticated remote attacker can exploit this vulnerability by sending a specially crafted HTTP request to the printer's web server. No authentication or user interaction is required. The attacker must be able to reach the web server over the network. The crafted request contains an overly long or malformed SNMP parameter that triggers the buffer overflow when parsed [1].

Impact

Successful exploitation could allow the attacker to cause a denial-of-service (DoS) condition or execute arbitrary code on the device. The CVSS v3 base score is 9.8 (Critical), indicating high impact on confidentiality, integrity, and availability [1].

Mitigation

Ricoh has released firmware updates to address this vulnerability. Users should apply the appropriate firmware update for their specific printer model as provided by Ricoh [1][2]. The JVN advisory recommends updating the firmware according to the developer's information. No workaround is mentioned; the only mitigation is to install the latest firmware from Ricoh's support site [2].

References

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Ricoh/printersdescription
Ricoh/SP C250dnllm-create
Range: <=1.06
Ricoh/SP C252dnllm-create
Ricoh/SP C250sfllm-create
Range: <=1.12
Ricoh/SP C252sfllm-create

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvn.jp/en/jp/JVN11708203/index.htmlmitrethird-party-advisoryx_refsource_JVN
www.ricoh-usa.com/en/support-and-downloadmitrex_refsource_MISC
www.ricoh.com/info/2019/0823_1/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000