Notice of the potential impact of vulnerability CVE-2022-42889
Last updated: Thursday, 03 November, 2022
First published: Tuesday, 25 October, 2022
Ricoh understands the importance of security and is committed to managing its products and services with the most advanced security technologies possible for its customers worldwide.
Ricoh is aware of the reported "Apache Commons Text vulnerability" (CVE-2022-42889). A vulnerability in the variable interpolator of Apache Commons Text, a library for algorithms related to string processing, may allow arbitrary code execution if malicious input is processed. Please refer to the following URL for further details:
https://nvd.nist.gov/vuln/detail/CVE-2022-42889
The list below shows our investigation status/result along with the vulnerability impact on Ricoh's major products and services.
Product/service type | Category | Subcategory | Status |
---|---|---|---|
Office Products | Multifunction Printers/Copiers | Black & White MFP | Not affected |
Color MFP | Not affected | ||
Wide Format MFP | Not affected | ||
Printers | Black & White Laser Printers | Not affected | |
Color Laser Printers | Not affected | ||
Gel Jet Printers | Not affected | ||
FAX | Not affected | ||
Digital Duplicators | Not affected | ||
Projectors | Not affected | ||
Video Conferencing | Not affected | ||
Interactive Whiteboards | Not affected | ||
Remote Communication Gates | Remote Communication Gate A2 | Not affected | |
Remote Communication Gate A | Not affected | ||
Remote Communication Gate Type N/L/BN1/BM1 | Not affected | ||
Software & Solutions | Card Authentication Package Series | Not affected | |
Device Manager NX Accounting | Not affected | ||
Device Manager NX Lite | Not affected | ||
Docuware | Not affected | ||
GlobalScan NX | Not affected | ||
Enhanced Locked Print Series | Not affected | ||
Printer Driver Packager NX | Not affected | ||
@Remote Connector NX | Not affected | ||
Ricoh Smart Integration (RSI) Platform and its applications | Not affected | ||
RICOH Print Management Cloud | Not affected | ||
RICOH Streamline NX V2 | Not affected | ||
RICOH Streamline NX V3 | Not affected | ||
myPrint | Not affected | ||
SLNXShare | Not affected | ||
Certificate Enrolment Service | Not affected | ||
Commercial & Industrial Printing | Cut sheet Printers | Not affected | |
Wide Format Printers | Under investigation | ||
Continuous Feed | Not affected | ||
Garment Printer | Under investigation | ||
Digital Painting | Not affected | ||
Commercial & Industrial Printing Software | Under investigation |
We will update this page as we progress with the investigation.
| About Ricoh |
Ricoh is a leading provider of integrated digital services and print and imaging solutions designed to support digital transformation of workplaces, workspaces and optimise business performance.
Headquartered in Tokyo, Ricoh’s global operation reaches customers in approximately 200 countries and regions, supported by cultivated knowledge, technologies, and organisational capabilities nurtured over its 85-year history. In the financial year ended March 2024, Ricoh Group had worldwide sales of 2,348 billion yen (approx. 15.5 billion USD).
It is Ricoh’s mission and vision to empower individuals to find Fulfilment through Work by understanding and transforming how people work so we can unleash their potential and creativity to realise a sustainable future.
For further information, please visit www.ricoh.com