Specific Ricoh MFP and Printer Products - Vulnerabilities in the PostScript

Specific Ricoh MFP and Printer Products - Vulnerabilities in the PostScript interpreter (CVE-2024-11344, CVE-2024-11345, CVE-2024-11346, CVE-2024-11347) and the embedded web server (CVE-2025-1127)

First published: 06:00 pm on March 17, 2025 (2025-03-18T03:00:00+09:00)

Ricoh Company, Ltd.

Ricoh has identified vulnerabilities in the PostScript interpreter (CVE-2024-11344, CVE-2024-11345, CVE-2024-11346, CVE-2024-11347) and the embedded web server (CVE-2025-1127) towards Ricoh products.

These vulnerabilities allow arbitrary code to be executed remotely.

CVE-2024-11344: A type confusion vulnerability has been identified in the Postscript interpreter.
CVE-2024-11345: A heap-based memory vulnerability has been identified in the Postscript interpreter.
CVE-2024-11346: A type confusion vulnerability has been identified in the Postscript interpreter.
CVE-2024-11347: An integer overflow vulnerability has been identified in the Postscript interpreter.
CVE-2025-1127: A combination Path Traversal and Concurrent Execution vulnerability exists within the embedded web server.

List 1 below shows the affected printers. Ricoh offers countermeasures detailed in the hyperlinked pages in the list.

List1:Ricoh products and services affected by this vulnerability:

Product/service	Link to details
M C240FW	Affected. For details, please refer to the following URL.
P C200W	Affected. For details, please refer to the following URL.

Vulnerability Information ID: ricoh-2025-000003

Version: 1.00E

CVE ID(CWE ID): CVE-2024-11344 ( CWE-843 ) CVE-2024-11345 ( CWE-466 ) CVE-2024-11346 ( CWE-843 ) CVE-2024-11347 ( CWE-190 ) CVE-2025-1127 ( CWE-22CWE-362 )

CVSSv3 base score: 9.1 CRITICAL

Contact

Please contact your local Ricoh representative or dealer if you have any queries.