← Volver a CVEs
CVE-2019-14310
CRITICAL9.8
Descripcion
Ricoh SP C250DN 1.05 devices allow denial of service (issue 2 of 3). Unauthenticated crafted packets to the IPP service will cause a vulnerable device to crash. A memory corruption has been identified in the way of how the embedded device parsed the IPP packets
Detalles CVE
Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado3/13/2020
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
ricoh:sp_c250dnricoh:sp_c250dn_firmwarericoh:sp_c250sfricoh:sp_c250sf_firmwarericoh:sp_c252dnricoh:sp_c252dn_firmwarericoh:sp_c252sfricoh:sp_c252sf_firmware
Debilidades (CWE)
CWE-787
Referencias
https://www.nccgroup.trust/us/our-research/technical-advisory-multiple-vulnerabilities-in-ricoh-printers/(cve@mitre.org)
https://www.ricoh-usa.com/en/support-and-download(cve@mitre.org)
https://www.nccgroup.trust/us/our-research/technical-advisory-multiple-vulnerabilities-in-ricoh-printers/(af854a3a-2127-422b-91ae-364da2661108)
https://www.ricoh-usa.com/en/support-and-download(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.