Vulnerability Details CVE-2019-14310
Ricoh SP C250DN 1.05 devices allow denial of service (issue 2 of 3). Unauthenticated crafted packets to the IPP service will cause a vulnerable device to crash. A memory corruption has been identified in the way of how the embedded device parsed the IPP packets
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.9%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- https://www.nccgroup.trust/us/our-research/technical-advisory-multiple-vulnerabilities-in-ricoh-printers/
- https://www.ricoh-usa.com/en/support-and-download
- https://www.nccgroup.trust/us/our-research/technical-advisory-multiple-vulnerabilities-in-ricoh-printers/
- https://www.ricoh-usa.com/en/support-and-download
Products affected by CVE-2019-14310
-
cpe:2.3:h:ricoh:sp_c250dn:-
-
cpe:2.3:h:ricoh:sp_c250sf:-
-
cpe:2.3:h:ricoh:sp_c252dn:-
-
cpe:2.3:h:ricoh:sp_c252sf:-
-
cpe:2.3:o:ricoh:sp_c250dn_firmware:1.05
-
cpe:2.3:o:ricoh:sp_c250sf_firmware:-
-
cpe:2.3:o:ricoh:sp_c250sf_firmware:1.13
-
cpe:2.3:o:ricoh:sp_c250sf_firmware:1.15
-
cpe:2.3:o:ricoh:sp_c252dn_firmware:-
-
cpe:2.3:o:ricoh:sp_c252dn_firmware:1.07
-
cpe:2.3:o:ricoh:sp_c252dn_firmware:1.09
-
cpe:2.3:o:ricoh:sp_c252sf_firmware:-
-
cpe:2.3:o:ricoh:sp_c252sf_firmware:1.13
-
cpe:2.3:o:ricoh:sp_c252sf_firmware:1.15