CVE-2026-24466
CVE-2026-24466
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8.4EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
09 feb 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Products provided by Oki Electric Industry Co., Ltd. and its OEM products (Ricoh Co., Ltd., Murata Machinery, Ltd.) register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Productos afectados
Murata Machinery, Ltd. · See "References" sectionOki Electric Industry Co., Ltd. · See "References" sectionRicoh Company, Ltd. · See "References" section¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://jp.ricoh.com/security/products/vulnerabilities/vul?id=ricoh-2026-000002https://jvn.jp/en/jp/JVN55395471/https://www.muratec.jp/ce/support/announce_sp_20260209.htmlhttps://www.oki.com/jp/printing/support/important-information/2026/info-260209/index.htmlhttps://www.oki.com/jp/product_security/sa_2026_0001_en.html