Sp C250sf Firmware Security Vulnerabilities and Issues — Sp C250sf Firmware CVE List

RICOH Printer series SP products 320DN, SP 325DNw, SP 320SN, SP 320SFN, SP 325SNw, SP 325SFNw, SP 330SN, Aficio SP 3500SF, SP 221S, SP 220SNw, SP 221SNw, SP 221SF, SP 220SFNw, SP 221SFNw v1.06 were discovered to contain a stack buffer overflow in the file /etc/wpa_supplicant.conf. This vulnerabilit...

9.8CVSS9.6AI score0.00539EPSS

CVE•added 2020/03/13 7:15 p.m.•81 views

CVE-2019-14303

Ricoh SP C250DN 1.05 devices allow denial of service (issue 1 of 3). Some Ricoh printers were affected by a wrong LPD service implementation that lead to a denial of service vulnerability.

7.5CVSS7.4AI score0.0054EPSS

CVE•added 2020/03/13 7:15 p.m.•80 views

CVE-2019-14299

Ricoh SP C250DN 1.05 devices have an Authentication Method Vulnerable to Brute Force Attacks. Some Ricoh printers did not implement account lockout. Therefore, it was possible to obtain the local account credentials by brute force.

9.8CVSS9.2AI score0.00371EPSS

CVE•added 2020/03/13 7:15 p.m.•55 views

CVE-2019-14309

Ricoh SP C250DN 1.05 devices have a fixed password. FTP service credential were found to be hardcoded within the printer firmware. This would allow to an attacker to access and read information stored on the shared FTP folders.

7.5CVSS7.3AI score0.00344EPSS

CVE•added 2020/03/13 7:15 p.m.•53 views

CVE-2019-14310

Ricoh SP C250DN 1.05 devices allow denial of service (issue 2 of 3). Unauthenticated crafted packets to the IPP service will cause a vulnerable device to crash. A memory corruption has been identified in the way of how the embedded device parsed the IPP packets

10CVSS9.3AI score0.00521EPSS

CVE•added 2019/08/26 3:15 p.m.•50 views

CVE-2019-14300

Several Ricoh printers have multiple buffer overflows parsing HTTP cookie headers, which allow an attacker to cause a denial of service or code execution via crafted requests to the web server. Affected firmware versions depend on the printer models. One affected configuration is cpe:2.3:o:ricoh:sp...

9.8CVSS9.3AI score0.01287EPSS

CVE•added 2019/08/26 3:15 p.m.•44 views

CVE-2019-14305

Several Ricoh printers have multiple buffer overflows parsing HTTP parameter settings for Wi-Fi, mDNS, POP3, SMTP, and notification alerts, which allow an attacker to cause a denial of service or code execution via crafted requests to the web server. Affected firmware versions depend on the printer...

9.8CVSS9.3AI score0.01282EPSS

CVE•added 2019/08/26 3:15 p.m.•42 views

CVE-2019-14307

Several Ricoh printers have multiple buffer overflows parsing HTTP parameter settings for SNMP, which allow an attacker to cause a denial of service or code execution via crafted requests to the web server. Affected firmware versions depend on the printer models. One affected configuration is cpe:2...

9.8CVSS9.3AI score0.01221EPSS

CVE•added 2019/08/26 2:15 p.m.•37 views

CVE-2019-14308

Several Ricoh printers have multiple buffer overflows parsing LPD packets, which allow an attacker to cause a denial of service or code execution via crafted requests to the LPD service. Affected firmware versions depend on the printer models. One affected configuration is cpe:2.3:o:ricoh:sp_c250dn...

9.8CVSS9.3AI score0.01287EPSS