Lucene search
JpcertVULNRICHMENT:CVE-2024-36480HistoryJun 19, 2024 - 6:40 a.m.
CVE-2024-36480
2024-06-1906:40:46
jpcert
github.com
3
ricoh streamline nx
hard-coded credentials
localsystem account
unintended operations
Use of hard-coded credentials issue exists in Ricoh Streamline NX PC Client ver.3.7.2 and earlier. If this vulnerability is exploited, an attacker may obtain LocalSystem Account of the PC where the product is installed. As a result, unintended operations may be performed on the PC.
CNA Affected
[
{
"vendor": "CVE-2024-36480",
"product": "Ricoh Streamline NX PC Client",
"versions": [
{
"status": "affected",
"version": "ver.3.7.2 and earlier"
}
]
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:a:ricoh:streamline_nx_pc_client:*:*:*:*:*:*:*:*"
],
"vendor": "ricoh",
"product": "streamline_nx_pc_client",
"versions": [
{
"status": "affected",
"version": "0",
"versionType": "custom",
"lessThanOrEqual": "3.7.2"
}
],
"defaultStatus": "unknown"
}
]Related
nvd
nvd
CVE-2024-36480
2024-06-19 07:15:46
cvelist
cvelist
CVE-2024-36480
2024-06-19 06:40:46
nessus
nessus
cve
cve
CVE-2024-36480
2024-06-19 07:15:46
jvn
jvn
JVN#00442488: Multiple vulnerabilities in Ricoh Streamline NX PC Client
2024-06-18 00:00:00
AI Score
7.2
Confidence
Low
SSVC
Exploitation
none
Automatable
yes
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-36480