108 matches found
CVE-2026-21409
Improper authorization vulnerability exists in RICOH Streamline NX 3.5.1 to 24R3. If a man-in-the-middle attack is conducted on the communication between the affected product and its user, and some crafted request is processed by the product, the user's registration information and/or OIDC OpenID...
RICOH Streamline NX vulnerable to improper authorization
Overview RICOH Streamline NX provided by Ricoh Company, Ltd. contains the following vulnerability. Improper authorization CWE-639 - CVE-2026-21409 Ricoh Company, Ltd. reported this vulnerability to IPA to notify the users of its solution through JVN. JPCERT/CC and Ricoh Company, Ltd. coordinated...
CVE-2026-21409
Improper authorization vulnerability exists in RICOH Streamline NX 3.5.1 to 24R3. If a man-in-the-middle attack is conducted on the communication between the affected product and its user, and some crafted request is processed by the product, the user's registration information and/or OIDC OpenID...
CVE-2026-21409
Improper authorization vulnerability exists in RICOH Streamline NX 3.5.1 to 24R3. If a man-in-the-middle attack is conducted on the communication between the affected product and its user, and some crafted request is processed by the product, the user's registration information and/or OIDC OpenID...
CVE-2026-21409
Improper authorization vulnerability exists in RICOH Streamline NX 3.5.1 to 24R3. If a man-in-the-middle attack is conducted on the communication between the affected product and its user, and some crafted request is processed by the product, the user's registration information and/or OIDC OpenID...
CVE-2026-21409
CVE-2026-21409 affects RICOH Streamline NX versions 3.5.1 through 24R3. The vulnerability is described as improper authorization that could allow an attacker performing a man‑in‑the‑middle on the communication between the user and the product to retrieve the user’s registration information and/or...
PT-2026-2058
Name of the Vulnerable Software and Affected Versions RICOH Streamline NX versions 3.5.1 through 24R3 Description An improper authorization issue exists in the software. If a man-in-the-middle attack is performed on communication between the product and a user, and a specially crafted request is...
RICOH Streamline NX 安全漏洞
RICOH Streamline NX is a document and print management software from RICOH Japan. A security vulnerability exists in RICOH Streamline NX versions 3.5.1 through 24R3 that stems from improper authorization and could result in the retrieval of user registration information and or OIDC tokens...
EUVD-2019-10558
Malware in sbrugna...
EUVD-2025-18256
Malicious code in bioql PyPI...
EUVD-2025-27989
Malicious code in bioql PyPI...
EUVD-2025-27108
Malicious code in bioql PyPI...
EUVD-2025-18258
Malicious code in bioql PyPI...
EUVD-2025-18257
Malicious code in bioql PyPI...
CVE-2025-58422
RICOH Streamline NX versions 3.5.1 to 24R3 are vulnerable to tampering with operation history. If an attacker can perform a man-in-the-middle attack, they may alter the values of HTTP requests, which could result in tampering with the operation history of the product’s management tool...
CVE-2025-58422
RICOH Streamline NX versions 3.5.1 to 24R3 are vulnerable to tampering with operation history. If an attacker can perform a man-in-the-middle attack, they may alter the values of HTTP requests, which could result in tampering with the operation history of the product’s management tool...
CVE-2025-58422
RICOH Streamline NX versions 3.5.1 to 24R3 are vulnerable to tampering with operation history. If an attacker can perform a man-in-the-middle attack, they may alter the values of HTTP requests, which could result in tampering with the operation history of the product’s management tool...
CVE-2025-58422
CVE-2025-58422 affects Ricoh Streamline NX, versions 3.5.1 through 24R3. The issue allows an attacker performing a man-in-the-middle attack to alter HTTP request values, potentially tampering with the operation history of the product’s management tool. Connected sources confirm the root cause is ...
CVE-2025-58422
RICOH Streamline NX versions 3.5.1 to 24R3 are vulnerable to tampering with operation history. If an attacker can perform a man-in-the-middle attack, they may alter the values of HTTP requests, which could result in tampering with the operation history of the product’s management tool...
RICOH Streamline NX vulnerable to tampering with operation history
Overview RICOH Streamline NX provided by Ricoh Company, Ltd. contains the following vulnerability. Use of Less Trusted Source CWE-348 - CVE-2025-58422 Ricoh Company, Ltd. reported this vulnerability to IPA to notify users of its solution through JVN. JPCERT/CC and Ricoh Company, Ltd. coordinated...