VYPR

Vendor CVEs

Ricoh

All CVEs

58 total · sorted by risk
  • CVE-2025-46783CriJun 13, 2025
    risk 0.64cvss 9.8epss 0.01

    Path traversal vulnerability exists in RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.242.0. If this vulnerability is exploited, arbitrary code may be executed on the PC where the product is running by tampering with specific files used on the product.

  • CVE-2024-37124CriJun 19, 2024
    risk 0.64cvss 9.8epss 0.01

    Use of potentially dangerous function issue exists in Ricoh Streamline NX PC Client. If this vulnerability is exploited, an attacker may create an arbitrary file in the PC where the product is installed.

  • CVE-2024-36480CriJun 19, 2024
    risk 0.64cvss 9.8epss 0.00

    Use of hard-coded credentials issue exists in Ricoh Streamline NX PC Client ver.3.7.2 and earlier. If this vulnerability is exploited, an attacker may obtain LocalSystem Account of the PC where the product is installed. As a result, unintended operations may be performed on the…

  • CVE-2018-15884HigAug 28, 2018
    risk 0.60cvss 8.8epss 0.03

    RICOH MP C4504ex devices allow HTML Injection via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn parameter.

  • CVE-2024-39927HigJul 10, 2024
    risk 0.53cvss 8.2epss 0.01

    Out-of-bounds write vulnerability exists in Ricoh MFPs and printers. If a remote attacker sends a specially crafted request to the affected products, the products may be able to cause a denial-of-service (DoS) condition and/or user's data may be destroyed.

  • CVE-2026-26050HigFeb 20, 2026
    risk 0.51cvss 7.8epss 0.00

    The installer for ジョブログ集計/分析ソフトウェア RICOHジョブログ集計ツール versions prior to Ver.1.3.7 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed…

  • CVE-2024-47939HigNov 1, 2024
    risk 0.50cvss 7.7epss 0.01

    Stack-based buffer overflow vulnerability exists in multiple laser printers and MFPs which implement Ricoh Web Image Monitor. If this vulnerability is exploited, receiving a specially crafted request created and sent by an attacker may lead to arbitrary code execution and/or a…

  • CVE-2024-41995HigAug 6, 2024
    risk 0.49cvss 7.5epss 0.01

    Initialization of a resource with an insecure default vulnerability exists in JavaTM Platform Ver.12.89 and earlier. If this vulnerability is exploited, the product may be affected by some known TLS1.0 and TLS1.1 vulnerabilities. As for the specific products/models/versions of…

  • CVE-2018-17313MedSep 26, 2018
    risk 0.43cvss 6.1epss 0.02

    On the RICOH MP C307 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2018-17310MedSep 26, 2018
    risk 0.43cvss 6.1epss 0.02

    On the RICOH MP C1803 JPN printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2025-36506MedJun 13, 2025
    risk 0.42cvss 6.5epss 0.00

    External control of file name or path issue exists in RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.242.0. If an attacker sends a specially crafted request, arbitrary files in the file system can be overwritten with log data.

  • CVE-2024-36252MedJun 19, 2024
    risk 0.41cvss 6.3epss 0.00

    Improper restriction of communication channel to intended endpoints issue exists in Ricoh Streamline NX PC Client ver.3.6.x and earlier. If this vulnerability is exploited, arbitrary code may be executed on the PC where the product is installed.

  • CVE-2019-25324MedFeb 12, 2026
    risk 0.40cvss 6.1epss 0.00

    RICOH Web Image Monitor 1.09 contains an HTML injection vulnerability in the address configuration CGI script that allows attackers to inject malicious HTML code. Attackers can exploit the entryNameIn and entryDisplayNameIn parameters to insert arbitrary HTML content,…

  • CVE-2025-41393MedMay 12, 2025
    risk 0.40cvss 6.1epss 0.01

    Reflected cross-site scripting vulnerability exists in the laser printers and MFPs (multifunction printers) which implement Ricoh Web Image Monitor. If exploited, an arbitrary script may be executed on the web browser of the user who accessed Web Image Monitor. As for the…

  • CVE-2018-17316MedSep 26, 2018
    risk 0.40cvss 6.1epss 0.01

    On the RICOH MP C6003 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2018-17315MedSep 26, 2018
    risk 0.40cvss 6.1epss 0.01

    On the RICOH MP C2003 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2018-17314MedSep 26, 2018
    risk 0.40cvss 6.1epss 0.01

    On the RICOH Aficio MP 305+ printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2018-17312MedSep 26, 2018
    risk 0.40cvss 6.1epss 0.01

    On the RICOH Aficio MP 301 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2018-17311MedSep 26, 2018
    risk 0.40cvss 6.1epss 0.01

    On the RICOH MP C6503 Plus printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2018-17309MedSep 26, 2018
    risk 0.40cvss 6.1epss 0.01

    On the RICOH MP C406Z printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2018-17002MedSep 21, 2018
    risk 0.40cvss 6.1epss 0.01

    On the RICOH MP 2001 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2018-17001MedSep 21, 2018
    risk 0.40cvss 6.1epss 0.01

    On the RICOH SP 4510SF printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2026-41226MedApr 30, 2026
    risk 0.31cvss 4.7epss 0.00

    Open redirect vulnerability exists in Multiple laser printers and MFPs which implement Ricoh Web Image Monitor. When accessing a specially crafted URL, the user may be redirected to an arbitrary website. As a result, the user may become a victim of a phishing attack.

  • CVE-2024-37387MedJun 19, 2024
    risk 0.26cvss 4.0epss 0.00

    Use of potentially dangerous function issue exists in Ricoh Streamline NX PC Client. If this vulnerability is exploited, files in the PC where the product is installed may be altered.

  • CVE-2025-48825LowJun 13, 2025
    risk 0.16cvss 2.5epss 0.00

    RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.7.0 contains an issue with use of less trusted source, which may allow an attacker who can conduct a man-in-the-middle attack to eavesdrop upgrade requests and execute a malicious DLL with custom code.

  • CVE-2012-5002Sep 19, 2012
    risk 0.05cvss epss 0.31

    Stack-based buffer overflow in SR10 FTP server (SR10.exe) 1.1.0.6 in Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a long USER FTP command.

  • CVE-2019-7751Dec 31, 2019
    risk 0.04cvss epss 0.14

    A directory traversal and local file inclusion vulnerability in FPProducerInternetServer.exe in Ricoh MarcomCentral, formerly PTI Marketing, FusionPro VDP before 10.0 allows a remote attacker to list or enumerate sensitive contents of files. Furthermore, this could allow for…

  • CVE-2015-6750Aug 31, 2015
    risk 0.04cvss epss 0.08

    Buffer overflow in Ricoh DL FTP Server 1.1.0.6 and earlier allows remote attackers to execute arbitrary code via a long USER command.

  • CVE-2019-19363Jan 24, 2020
    risk 0.03cvss epss 0.05

    An issue was discovered in Ricoh (including Savin and Lanier) Windows printer drivers prior to 2020 that allows attackers local privilege escalation. Affected drivers and versions are: PCL6 Driver for Universal Print - Version 4.0 or later PS Driver for Universal Print - Version…

  • CVE-2023-30759Jun 19, 2023
    risk 0.00cvss epss 0.00

    The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to detect its modification and may spawn an unexpected process with the administrative privilege. If a non-administrative user modifies the driver installation package and runs it on…

  • CVE-2022-43969Feb 16, 2023
    risk 0.00cvss epss 0.01

    Ricoh mp_c4504ex devices with firmware 1.06 mishandle credentials.

  • CVE-2022-37406Dec 7, 2022
    risk 0.00cvss epss 0.01

    Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.

  • CVE-2022-36403Sep 8, 2022
    risk 0.00cvss epss 0.00

    Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

  • CVE-2021-33945Feb 15, 2022
    risk 0.00cvss epss 0.02

    RICOH Printer series SP products 320DN, SP 325DNw, SP 320SN, SP 320SFN, SP 325SNw, SP 325SFNw, SP 330SN, Aficio SP 3500SF, SP 221S, SP 220SNw, SP 221SNw, SP 221SF, SP 220SFNw, SP 221SFNw v1.06 were discovered to contain a stack buffer overflow in the file…

  • CVE-2019-18914Nov 9, 2021
    risk 0.00cvss epss 0.01

    A potential security vulnerability has been identified for certain HP printers and MFPs that would allow redirection page Cross-Site Scripting in a client’s browser by clicking on a third-party malicious link.

  • CVE-2019-20001Aug 4, 2020
    risk 0.00cvss epss 0.00

    An issue was discovered in RICOH Streamline NX Client Tool and RICOH Streamline NX PC Client that allows attackers to escalate local privileges.

  • CVE-2019-14299Mar 13, 2020
    risk 0.00cvss epss 0.01

    Ricoh SP C250DN 1.05 devices have an Authentication Method Vulnerable to Brute Force Attacks. Some Ricoh printers did not implement account lockout. Therefore, it was possible to obtain the local account credentials by brute force.

  • CVE-2019-14303Mar 13, 2020
    risk 0.00cvss epss 0.01

    Ricoh SP C250DN 1.05 devices allow denial of service (issue 1 of 3). Some Ricoh printers were affected by a wrong LPD service implementation that lead to a denial of service vulnerability.

  • CVE-2019-14309Mar 13, 2020
    risk 0.00cvss epss 0.01

    Ricoh SP C250DN 1.05 devices have a fixed password. FTP service credential were found to be hardcoded within the printer firmware. This would allow to an attacker to access and read information stored on the shared FTP folders.

  • CVE-2019-14310Mar 13, 2020
    risk 0.00cvss epss 0.02

    Ricoh SP C250DN 1.05 devices allow denial of service (issue 2 of 3). Unauthenticated crafted packets to the IPP service will cause a vulnerable device to crash. A memory corruption has been identified in the way of how the embedded device parsed the IPP packets

  • CVE-2019-14301Jan 10, 2020
    risk 0.00cvss epss 0.01

    Ricoh SP C250DN 1.06 devices have Incorrect Access Control (issue 1 of 2).

  • CVE-2019-14302Jan 10, 2020
    risk 0.00cvss epss 0.00

    On Ricoh SP C250DN 1.06 devices, a debug port can be used.

  • CVE-2019-14306Jan 10, 2020
    risk 0.00cvss epss 0.01

    Ricoh SP C250DN 1.06 devices have Incorrect Access Control (issue 2 of 2).

  • CVE-2019-14304Jan 10, 2020
    risk 0.00cvss epss 0.01

    Ricoh SP C250DN 1.06 devices allow CSRF.

  • CVE-2019-6021Dec 26, 2019
    risk 0.00cvss epss 0.01

    Open redirect vulnerability in Library Information Management System LIMEDIO all versions allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL.

  • CVE-2019-18203Oct 21, 2019
    risk 0.00cvss epss 0.01

    On the RICOH MP 501 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn and KeyDisplay parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

  • CVE-2019-14300Aug 26, 2019
    risk 0.00cvss epss 0.03

    Several Ricoh printers have multiple buffer overflows parsing HTTP cookie headers, which allow an attacker to cause a denial of service or code execution via crafted requests to the web server. Affected firmware versions depend on the printer models. One affected configuration…

  • CVE-2019-14305Aug 26, 2019
    risk 0.00cvss epss 0.03

    Several Ricoh printers have multiple buffer overflows parsing HTTP parameter settings for Wi-Fi, mDNS, POP3, SMTP, and notification alerts, which allow an attacker to cause a denial of service or code execution via crafted requests to the web server. Affected firmware versions…

  • CVE-2019-14307Aug 26, 2019
    risk 0.00cvss epss 0.03

    Several Ricoh printers have multiple buffer overflows parsing HTTP parameter settings for SNMP, which allow an attacker to cause a denial of service or code execution via crafted requests to the web server. Affected firmware versions depend on the printer models. One affected…

  • CVE-2019-14308Aug 26, 2019
    risk 0.00cvss epss 0.03

    Several Ricoh printers have multiple buffer overflows parsing LPD packets, which allow an attacker to cause a denial of service or code execution via crafted requests to the LPD service. Affected firmware versions depend on the printer models. One affected configuration is…

Page 1 of 2