CVE Tools

ricoh company. ltd.

Hardware FirmwareJPcommercial

8

Cumulative CVEs

1

Monthly snapshots

#60

Peak rank

Top products

ricoh mp6 ricoh aficio mp2

Latest CVEs

The 15 most recently published vulnerabilities affecting ricoh company. ltd..

CVE-2026-50100Multiple printer drivers provided by Ricoh Company, Ltd. and KONICA MINOLTA JAPAN, INC. contain a privilege escalation vulnerability. If this vulnerability is exploited, an attacker who can log in ...7.8Jun 15, 2026
CVE-2026-41226Open redirect vulnerability exists in Multiple laser printers and MFPs which implement Ricoh Web Image Monitor. When accessing a specially crafted URL, the user may be redirected to an arbitrary we...4.7Apr 30, 2026
CVE-2026-26050The installer for ジョブログ集計/分析ソフトウェア RICOHジョブログ集計ツール versions prior to Ver.1.3.7 contains an issue with the DLL search path, which may lead to insecu...7.8Feb 20, 2026
CVE-2026-24466Products provided by Oki Electric Industry Co., Ltd. and its OEM products (Ricoh Co., Ltd., Murata Machinery, Ltd.) register Windows services with unquoted file paths. A user with the write permiss...6.7Feb 9, 2026
CVE-2025-53869Multiple MFPs provided by Brother Industries, Ltd. does not properly validate server certificates, which may allow a man-in-the-middle attacker to replace the set of root certificates used by the p...3.7Jan 29, 2026
CVE-2026-21409Improper authorization vulnerability exists in RICOH Streamline NX 3.5.1 to 24R3. If a man-in-the-middle attack is conducted on the communication between the affected product and its user, and some...5.9Jan 9, 2026
CVE-2025-58422RICOH Streamline NX versions 3.5.1 to 24R3 are vulnerable to tampering with operation history. If an attacker can perform a man-in-the-middle attack, they may alter the values of HTTP requests, whi...3.1Sep 8, 2025
CVE-2025-41439A reflected cross-site scripting vulnerability via a specific parameter exists in SLNX Help Documentation of RICOH Streamline NX. If this vulnerability is exploited, an arbitrary script may be exec...6.1Jun 30, 2025
CVE-2025-49797Multiple Brother driver installers for Windows contain a privilege escalation vulnerability. If exploited, an arbitrary program may be executed with the administrative privilege. As for the details...7.8Jun 25, 2025
CVE-2025-48825RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.7.0 contains an issue with use of less trusted source, which may allow an attacker who can conduct a man-in-the-middle attack to eavesdrop upgra...2.5Jun 13, 2025
CVE-2025-46783Path traversal vulnerability exists in RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.242.0. If this vulnerability is exploited, arbitrary code may be executed on the PC where the product is ...9.8Jun 13, 2025
CVE-2025-36506External control of file name or path issue exists in RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.242.0. If an attacker sends a specially crafted request, arbitrary files in the file syste...6.5Jun 13, 2025
CVE-2025-41393Reflected cross-site scripting vulnerability exists in the laser printers and MFPs (multifunction printers) which implement Ricoh Web Image Monitor. If exploited, an arbitrary script may be execute...6.1May 12, 2025
CVE-2024-47939Stack-based buffer overflow vulnerability exists in multiple laser printers and MFPs which implement Ricoh Web Image Monitor. If this vulnerability is exploited, receiving a specially crafted reque...7.7Nov 1, 2024
CVE-2024-41995Initialization of a resource with an insecure default vulnerability exists in JavaTM Platform Ver.12.89 and earlier. If this vulnerability is exploited, the product may be affected by some known TL...7.5Aug 6, 2024