CVE-2026-24466
CVE-2026-24466
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 8.4EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
09 fev 2026Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Products provided by Oki Electric Industry Co., Ltd. and its OEM products (Ricoh Co., Ltd., Murata Machinery, Ltd.) register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
Murata Machinery, Ltd. · See "References" sectionOki Electric Industry Co., Ltd. · See "References" sectionRicoh Company, Ltd. · See "References" sectionQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://jp.ricoh.com/security/products/vulnerabilities/vul?id=ricoh-2026-000002https://jvn.jp/en/jp/JVN55395471/https://www.muratec.jp/ce/support/announce_sp_20260209.htmlhttps://www.oki.com/jp/printing/support/important-information/2026/info-260209/index.htmlhttps://www.oki.com/jp/product_security/sa_2026_0001_en.html