CVE-2024-39927

Summary

Out-of-bounds write vulnerability exists in Ricoh MFPs and printers. If a remote attacker sends a specially crafted request to the affected products, the products may be able to cause a denial-of-service (DoS) condition and/or user's data may be destroyed.

Affected Software

VendorProductVersion RangeStatus
Ricoh Company, Ltd.IM C3510/C3010prior to System/Copy 2.00-00affected
Ricoh Company, Ltd.IM C6010/C5510/C4510prior to System/Copy 2.00-00affected
Ricoh Company, Ltd.IM C2510/C2010prior to System/Copy 2.00-00affected
Ricoh Company, Ltd.IM C7010prior to System/Copy 1.05-00affected
Ricoh Company, Ltd.IM 460F/460FTL/370/370Fprior to System/Copy 1.10-00affected
Ricoh Company, Ltd.IM C8500/C8510M/C8500/C8500Mprior to System 1.04-00affected

Weaknesses

  • Out-of-bounds write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

CVE Program Container

Additional References

References