← back
CVE-2024-39927

CVE-2024-39927

CVSS 8.2 HIGHEPSS 0.6%CWE-787
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.2EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
10 Jul 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Out-of-bounds write vulnerability exists in Ricoh MFPs and printers. If a remote attacker sends a specially crafted request to the affected products, the products may be able to cause a denial-of-service (DoS) condition and/or user's data may be destroyed.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Affected products
Ricoh Company, Ltd. · IM 460F/460FTL/370/370FRicoh Company, Ltd. · IM C2510/C2010Ricoh Company, Ltd. · IM C3510/C3010Ricoh Company, Ltd. · IM C6010/C5510/C4510Ricoh Company, Ltd. · IM C7010Ricoh Company, Ltd. · IM C8500/C8510M/C8500/C8500M

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jp.ricoh.com/security/products/vulnerabilities/vul?id=ricoh-2024-000008https://jvn.jp/en/jp/JVN14294633/https://jvn.jp/jp/JVN14294633/https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2024-000008