CVE-2024-37124
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Use of potentially dangerous function issue exists in Ricoh Streamline NX PC Client. If this vulnerability is exploited, an attacker may create an arbitrary file in the PC where the product is installed.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| RICOH COMPANY, LTD. | Ricoh Streamline NX PC Client | ver.3.2.1.19 | affected |
| RICOH COMPANY, LTD. | Ricoh Streamline NX PC Client | ver.3.3.1.3 | affected |
| RICOH COMPANY, LTD. | Ricoh Streamline NX PC Client | ver.3.3.2.201 | affected |
| RICOH COMPANY, LTD. | Ricoh Streamline NX PC Client | ver.3.4.3.1 | affected |
| RICOH COMPANY, LTD. | Ricoh Streamline NX PC Client | ver.3.5.1.201 (ver.3.5.1.200op1) | affected |
| RICOH COMPANY, LTD. | Ricoh Streamline NX PC Client | ver.3.6.100.53 | affected |
| RICOH COMPANY, LTD. | Ricoh Streamline NX PC Client | and ver.3.6.2.1 | affected |
Weaknesses
- Use of potentially dangerous function
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: total
CVE Program Container
Additional References
- https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2024-000006
- https://jvn.jp/en/jp/JVN00442488/
References
- https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2024-000006
- https://jvn.jp/en/jp/JVN00442488/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.