Описание
Products provided by Oki Electric Industry Co., Ltd. and its OEM products (Ricoh Co., Ltd., Murata Machinery, Ltd.) register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.
Products provided by Oki Electric Industry Co., Ltd. and its OEM products (Ricoh Co., Ltd., Murata Machinery, Ltd.) register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2026-24466
- https://jp.ricoh.com/security/products/vulnerabilities/vul?id=ricoh-2026-000002
- https://jvn.jp/en/jp/JVN55395471
- https://www.muratec.jp/ce/support/announce_sp_20260209.html
- https://www.oki.com/jp/printing/support/important-information/2026/info-260209/index.html
- https://www.oki.com/jp/product_security/sa_2026_0001_en.html
Связанные уязвимости
Products provided by Oki Electric Industry Co., Ltd. and its OEM products (Ricoh Co., Ltd., Murata Machinery, Ltd.) register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.