Описание
Ricoh SP C250DN 1.05 devices have an Authentication Method Vulnerable to Brute Force Attacks. Some Ricoh printers did not implement account lockout. Therefore, it was possible to obtain the local account credentials by brute force.
Ссылки
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:ricoh:sp_c250sf_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:sp_c250sf:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:ricoh:sp_c252sf_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:sp_c252sf:-:*:*:*:*:*:*:*
Конфигурация 3
Одновременно
cpe:2.3:o:ricoh:sp_c250dn_firmware:1.05:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:sp_c250dn:-:*:*:*:*:*:*:*
Конфигурация 4
Одновременно
cpe:2.3:o:ricoh:sp_c252dn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:sp_c252dn:-:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.00371
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-307
Связанные уязвимости
github
больше 3 лет назад
Ricoh SP C250DN 1.05 devices have an Authentication Method Vulnerable to Brute Force Attacks. Some Ricoh printers did not implement account lockout. Therefore, it was possible to obtain the local account credentials by brute force.
EPSS
Процентиль: 58%
0.00371
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-307