Ricoh Company, Ltd. Security Vulnerabilities
CVE-2022-25732 Buffer Over-read in MODEM
Information disclosure in modem due to buffer over read in dns client due to missing length...
8.2CVSS
8.3AI Score
0.001EPSS
CVE-2022-25739 Null Point Dereference in MODEM
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM...
7.5CVSS
6.8AI Score
0.001EPSS
CVE-2022-25739 Null Point Dereference in MODEM
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM...
7.5CVSS
7.7AI Score
0.001EPSS
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the...
9.8CVSS
9.6AI Score
0.001EPSS
CVE-2022-25740 Buffer Copy Without Checking Size of Input in MODEM
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the...
9.8CVSS
9.9AI Score
0.001EPSS
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed...
8.2CVSS
7.4AI Score
0.001EPSS
CVE-2022-33291 Buffer over-read in Modem
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed...
8.2CVSS
8.3AI Score
0.001EPSS
CVE-2022-33291 Buffer over-read in Modem
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed...
8.2CVSS
7AI Score
0.001EPSS
CVE-2022-33279 Stack based buffer overflow in WLAN
Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame...
9.8CVSS
7.6AI Score
0.002EPSS
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity update The rule activity update delayed work periodically traverses the list of configured rules and queries their activity from the device. As part of this...
6.7AI Score
0.0004EPSS
When generating the systemd service units for the docker snap (and other similar snaps), snapd does not specify Delegate=yes - as a result systemd will move processes from the containers created and managed by these snaps into the cgroup of the main daemon within the snap itself when reloading...
9.3CVSS
9.2AI Score
0.0004EPSS
Quanxun Huiju Network Technology (Beijing) Co.,Ltd IK-Q3000 3.7.10 x64 Build202401261655 was discovered to be vulnerable to an ICMP redirect...
6.8AI Score
EPSS
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in PORTY Smart Tech Technology Joint Stock Company PowerBank Application allows Retrieve Embedded Sensitive Data.This issue affects PowerBank Application: before...
7.5CVSS
6.8AI Score
0.001EPSS
The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of.....
6.8AI Score
0.0004EPSS
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM...
7.5CVSS
7.4AI Score
0.001EPSS
memory corruption in modem due to improper check while calculating size of serialized CoAP...
9.8CVSS
9.5AI Score
0.001EPSS
CVE-2022-33211 Improper Input Validation in MODEM
memory corruption in modem due to improper check while calculating size of serialized CoAP...
9.8CVSS
9.8AI Score
0.001EPSS
CVE-2022-33211 Improper Input Validation in MODEM
memory corruption in modem due to improper check while calculating size of serialized CoAP...
9.8CVSS
7.1AI Score
0.001EPSS
CVE-2022-33288 Buffer copy without checking the size of input in Core
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection...
9.3CVSS
7.4AI Score
0.0004EPSS
CVE-2022-33278 Buffer copy without checking the size of input in HLOS
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer...
7.8CVSS
8.1AI Score
0.0004EPSS
Information disclosure in modem due to buffer over-read while processing response from DNS...
8.2CVSS
7.4AI Score
0.001EPSS
Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame...
9.8CVSS
9.7AI Score
0.002EPSS
CVE-2022-25732 Buffer Over-read in MODEM
Information disclosure in modem due to buffer over read in dns client due to missing length...
8.2CVSS
6.9AI Score
0.001EPSS
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in PORTY Smart Tech Technology Joint Stock Company PowerBank Application allows Retrieve Embedded Sensitive Data.This issue affects PowerBank Application: before...
7.5CVSS
6.9AI Score
0.001EPSS
7.3AI Score
CVE-2022-25740 Buffer Copy Without Checking Size of Input in MODEM
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the...
9.8CVSS
7.3AI Score
0.001EPSS
CVE-2022-33288 Buffer copy without checking the size of input in Core
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection...
9.3CVSS
9.8AI Score
0.0004EPSS
CVE-2022-25728 Buffer Over-read in MODEM
Information disclosure in modem due to buffer over-read while processing response from DNS...
8.2CVSS
8.3AI Score
0.001EPSS
A vulnerability classified as critical has been found in Shenzhen Youkate Industrial Facial Love Cloud Payment System up to 1.0.55.0.0.1. This affects an unknown part of the file /SystemMng.ashx of the component Account Handler. The manipulation of the argument operatorRole with the input 00 leads....
9.8CVSS
9.5AI Score
0.001EPSS
An issue in Quanxun Huiju Network Technology(Beijing) Co.,Ltd IK-Q3000 3.7.10 x64 Build202401261655 allows attackers to cause a Denial of Service (DoS) when attempting to make TCP...
6.5AI Score
EPSS
Out-of-bounds read vulnerability caused by improper checking of the option length values in IPv6 NDP packets exists in Cente middleware TCP/IP Network Series, which may allow an unauthenticated attacker to stop the device operations by sending a specially crafted...
6.7AI Score
0.0004EPSS
An issue in Quanxun Huiju Network Technology(Beijing) Co.,Ltd IK-Q3000 3.7.10 x64 Build202401261655 allows attackers to cause a Denial of Service (DoS) when attempting to make TCP...
7AI Score
EPSS
An issue in Quanxun Huiju Network Technology(Beijing) Co.,Ltd IK-Q3000 3.7.10 x64 Build202401261655 allows attackers to cause a Denial of Service (DoS) when attempting to make TCP...
6.5AI Score
EPSS
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Wow-Company Woocommerce – Recent Purchases allows PHP Local File Inclusion.This issue affects Woocommerce – Recent Purchases: from n/a through...
4.9CVSS
5.5AI Score
0.001EPSS
A vulnerability classified as problematic was found in Campcodes Online Job Finder System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/company/index.php. The manipulation of the argument view leads to cross site scripting. The attack can be launched remotely......
3.5CVSS
3.7AI Score
0.0004EPSS
A vulnerability classified as problematic was found in Campcodes Online Job Finder System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/company/index.php. The manipulation of the argument view leads to cross site scripting. The attack can be launched remotely......
3.5CVSS
6.2AI Score
0.0004EPSS
CVE-2024-2683 Campcodes Online Job Finder System index.php cross site scripting
A vulnerability classified as problematic was found in Campcodes Online Job Finder System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/company/index.php. The manipulation of the argument view leads to cross site scripting. The attack can be launched remotely......
3.5CVSS
4.1AI Score
0.0004EPSS
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent unauthenticated attacker to execute arbitrary OS commands by sending a specially crafted request to the product. Affected products and versions are as follows: WRC-X3200GST3-B v1.25 and earlier, WRC-G01-W...
8AI Score
0.0004EPSS
A vulnerability classified as critical has been found in Shenzhen Youkate Industrial Facial Love Cloud Payment System up to 1.0.55.0.0.1. This affects an unknown part of the file /SystemMng.ashx of the component Account Handler. The manipulation of the argument operatorRole with the input 00 leads....
9.8CVSS
0.001EPSS
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash The rehash delayed work migrates filters from one region to another according to the number of available credits. The migrated from region is destroyed at the...
6.6AI Score
0.0004EPSS
CVE-2024-2683 Campcodes Online Job Finder System index.php cross site scripting
A vulnerability classified as problematic was found in Campcodes Online Job Finder System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/company/index.php. The manipulation of the argument view leads to cross site scripting. The attack can be launched remotely......
3.5CVSS
6.2AI Score
0.0004EPSS
US bans Kaspersky, warns: “Immediately stop using that software”
The US government will ban the sale of Kaspersky antivirus products to new customers in the United States starting July 20, with a follow-on deadline to prohibit the cybersecurity company from providing users with software updates after September 29. The move follows years of allegations that the.....
7.1AI Score
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash The rehash delayed work migrates filters from one region to another. This is done by iterating over all chunks (all the filters with the same priority) in the region and in...
6.7AI Score
0.0004EPSS
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Wow-Company Easy Digital Downloads – Recent Purchases allows PHP Remote File Inclusion.This issue affects Easy Digital Downloads – Recent Purchases: from n/a through...
9.8CVSS
9.6AI Score
0.001EPSS
7.5CVSS
7.6AI Score
0.0005EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
CVE-2023-21658 Buffer Over-Read in WLAN Firmware
Transient DOS in WLAN Firmware while processing the received beacon or probe response...
7.5CVSS
7.7AI Score
0.001EPSS
CVE-2022-33246 Use of out-of-range pointer offset in Audio
Memory corruption in Audio due to use of out-of-range pointer offset while Initiating a voice call session from user space with invalid session...
6.7CVSS
8AI Score
0.0004EPSS
CVE-2022-34145 Buffer over-read in WLAN Host
Transient DOS due to buffer over-read in WLAN Host while parsing frame...
7.5CVSS
7.8AI Score
0.001EPSS
CVE-2022-40538 Reachable assertion in Modem
Transient DOS due to reachable assertion in modem while processing sib with incorrect values from...
7.5CVSS
6.9AI Score
0.001EPSS