JVN#55263945: Multiple vulnerabilities in RICOH Interactive Whiteboard

2018-11-27T00:00:00
ID JVN:55263945
Type jvn
Reporter Japan Vulnerability Notes
Modified 2018-12-07T00:00:00

Description

## Description

RICOH Interactive Whiteboard provided by RICOH COMPANY, LTD. contains multiple vulnerabilities listed below.

  • Command injection (CWE-94) - CVE-2018-16184 CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | Base Score: 9.8
    ---|---|---
    CVSS v2 | AV:N/AC:L/AU:N/C:C/I:C/A:C | Base Score: 10.0
  • Missing file signature - CVE-2018-16185 CVSS v3 | CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L | Base Score: 5.0
    ---|---|---
    CVSS v2 | AV:N/AC:H/AU:N/C:P/I:P/A:P | Base Score: 5.1
  • Hard-coded credentials for the administrator settings screen - CVE-2018-16186 CVSS v3 | CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | Base Score: 8.4
    ---|---|---
    CVSS v2 | AV:L/AC:L/AU:N/C:C/I:C/A:C | Base Score: 7.2
  • The server certificate is self-signed - CVE-2018-16187 CVSS v3 | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N | Base Score: 4.8
    ---|---|---
    CVSS v2 | AV:N/AC:H/AU:N/C:P/I:P/A:N | Base Score: 4.0
  • SQL injection (CWE-89) - CVE-2018-16188 CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | Base Score: 9.8
    ---|---|---
    CVSS v2 | AV:N/AC:L/AU:N/C:C/I:C/A:C | Base Score: 10.0

## Impact

  • A remote attacker may execute an arbitrary command with the administrative privilege - CVE-2018-16184
  • A remote attacker may execute an altered program - CVE-2018-16185
  • An attacker may log in to the administrator settings screen and change the configuration - CVE-2018-16186
  • A man-in-the-middle attack allows an attacker to eavesdrop on an encrypted communication - CVE-2018-16187
  • A remote attacker may obtain or alter the information in the database - CVE-2018-16188

## Solution

Update the Software
Update to the latest version according to the information provided by the developer.

## Products Affected

CVE-2018-16184

  • RICOH Interactive Whiteboard D2200 V1.6 to V2.2
  • RICOH Interactive Whiteboard D5500 V1.6 to V2.2
  • RICOH Interactive Whiteboard D5510 V1.6 to V2.2 The following displays with RICOH Interactive Whiteboard Controller Type1 V1.6 to V2.2 attached
  • RICOH Interactive Whiteboard D5520
  • RICOH Interactive Whiteboard D6500
  • RICOH Interactive Whiteboard D6510
  • RICOH Interactive Whiteboard D7500
  • RICOH Interactive Whiteboard D8400 CVE-2018-16185, CVE-2018-16186

  • RICOH Interactive Whiteboard D2200 V1.1 to V2.2

  • RICOH Interactive Whiteboard D5500 V1.1 to V2.2
  • RICOH Interactive Whiteboard D5510 V1.1 to V2.2 The following displays with RICOH Interactive Whiteboard Controller Type1 V1.1 to V2.2 attached
  • RICOH Interactive Whiteboard D5520
  • RICOH Interactive Whiteboard D6500
  • RICOH Interactive Whiteboard D6510
  • RICOH Interactive Whiteboard D7500
  • RICOH Interactive Whiteboard D8400 The following displays with RICOH Interactive Whiteboard Controller Type2 V3.0 to V3.1.10137.0 attached
  • RICOH Interactive Whiteboard D5520
  • RICOH Interactive Whiteboard D6510
  • RICOH Interactive Whiteboard D7500
  • RICOH Interactive Whiteboard D8400 CVE-2018-16187, CVE-2018-16188

  • RICOH Interactive Whiteboard D2200 V1.3 to V2.2

  • RICOH Interactive Whiteboard D5500 V1.3 to V2.2
  • RICOH Interactive Whiteboard D5510 V1.3 to V2.2 The following displays with RICOH Interactive Whiteboard Controller Type1 V1.3 to V2.2 attached
  • RICOH Interactive Whiteboard D5520
  • RICOH Interactive Whiteboard D6500
  • RICOH Interactive Whiteboard D6510
  • RICOH Interactive Whiteboard D7500
  • RICOH Interactive Whiteboard D8400 The following displays with RICOH Interactive Whiteboard Controller Type2 V3.0 to V3.1.10137.0 attached
  • RICOH Interactive Whiteboard D5520
  • RICOH Interactive Whiteboard D6510
  • RICOH Interactive Whiteboard D7500
  • RICOH Interactive Whiteboard D8400