CVE-2024-41995
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Summary
Initialization of a resource with an insecure default vulnerability exists in JavaTM Platform Ver.12.89 and earlier. If this vulnerability is exploited, the product may be affected by some known TLS1.0 and TLS1.1 vulnerabilities. As for the specific products/models/versions of MFPs and printers that contain JavaTM Platform, see the information provided by the vendor.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Ricoh Company, Ltd. | JavaTM Platform | Ver.12.89 and earlier | affected |
Weaknesses
- Initialization of a Resource with an Insecure Default
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
References
- https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2024-000010
- https://jp.ricoh.com/security/products/vulnerabilities/vul?id=ricoh-2024-000010
- https://jvn.jp/en/jp/JVN78728294/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.