Lucene search
HistoryJun 19, 2024 - 7:15 a.m.
CVE-2024-36480
hard-coded credentials
ricoh streamline nx
localsystem account
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Use of hard-coded credentials issue exists in Ricoh Streamline NX PC Client ver.3.7.2 and earlier. If this vulnerability is exploited, an attacker may obtain LocalSystem Account of the PC where the product is installed. As a result, unintended operations may be performed on the PC.
Related
cvelist
cvelist
CVE-2024-36480
2024-06-19 06:40:46
nessus
nessus
vulnrichment
vulnrichment
CVE-2024-36480
2024-06-19 06:40:46
cve
cve
CVE-2024-36480
2024-06-19 07:15:46
jvn
jvn
JVN#00442488: Multiple vulnerabilities in Ricoh Streamline NX PC Client
2024-06-18 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-36480