CVE-2019-14309

Vulnerability

Ricoh SP C250DN printer firmware version 1.05 contains a hardcoded FTP service credential. This hardcoded password is stored within the printer's firmware, allowing anyone who extracts it to authenticate to the FTP service. The affected version is explicitly 1.05 [1].

Exploitation

An attacker can obtain the hardcoded FTP credential by analyzing the printer firmware. With this credential, the attacker can connect to the printer's FTP service over the network, as long as the FTP service is enabled and reachable. No authentication bypass is needed beyond using the hardcoded password [1].

Impact

Successful exploitation allows an attacker to access and read information stored in the shared FTP folders on the printer. This can lead to unauthorized disclosure of sensitive documents or configuration data that users have placed in those folders [1].

Mitigation

As of the publication date (2020-03-13), Ricoh's support page [1] does not mention a firmware update specifically addressing this CVE. Users should check for updated firmware on the Ricoh support site and apply any patches. If no fix is available, disabling the FTP service or restricting network access to the printer may reduce risk. The printer is not listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.