CVE-2023-30759

Published: Jun 19, 2023

Modified: Dec 12, 2024

PUBLISHED

Description

The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to detect its modification and may spawn an unexpected process with the administrative privilege. If a non-administrative user modifies the driver installation package and runs it on the target PC, an arbitrary program may be executed with the administrative privilege.

Vendor	Product	Versions
Ricoh Company, Ltd.	Printer Driver Packager NX	affected `v1.0.02 to v1.1.25`

References

https://www.ricoh.com/products/security/vulnerabilities/adv?id=ricoh-prod000048-2023-000001

https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2023-000001

https://jvn.jp/en/vu/JVNVU92207133/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-30759

Description

Affected Products

References