Details of VAR-202107-1765

ID

VAR-202107-1765

TITLE

Binary vulnerability exists in Ricoh SP series printers (CNVD-2021-42364)

Trust: 0.6

sources: CNVD: CNVD-2021-42364

DESCRIPTION

SP 320DN, SP 325DNw, SP 320SN, etc. are all-in-one printers, using RTOS operating system. Ricoh SP series printers have binary vulnerabilities. Attackers can use this vulnerability to cause the program to crash.

Trust: 0.6

sources: CNVD: CNVD-2021-42364

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-42364

AFFECTED PRODUCTS

vendor:	ricoh investment	model:	sp 320dn	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 325dnw	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 320sn	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 320sfn	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 325snw	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 325sfnw	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 330sn	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	aficio sp 3500sf	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 221s	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 220snw	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 221snw	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 221sf	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 220sfnw	scope:	-	version:	-	Trust: 0.6
vendor:	ricoh investment	model:	sp 221sfnw	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2021-42364

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-42364
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-42364
severity:	MEDIUM
baseScore:	4.9
vectorString:	AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-42364

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-42364

Trust: 0.6

sources: CNVD: CNVD-2021-42364

SOURCES

db:

CNVD

id:

CNVD-2021-42364

LAST UPDATE DATE

2022-05-04T09:15:23.347000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-42364

date:

2021-06-17T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-42364

date:

2021-07-19T00:00:00