Specific Ricoh MFP and Printer Products - CA Certificate Handling Vulnerability (CVE-2025-53869)
Specific MFPs and printers are potentially vulnerable to an issue in the handling of CA (Certificate Authority) certificate data obtained from a server.
This vulnerability may allow an attacker to manipulate connection information and redirect the device to an attacker-controlled server.
As a result, unauthorized CA certificates may be installed, potentially compromising TLS communications.
• Vulnerability Information ID
ricoh-2026-000001
• Version
1.00E
• CVE ID(CWE ID)
CVE-2025-53869 (CWE-295)
• CVSSv3 base score
3.7 LOW
List 1: Ricoh products and services affected by this vulnerability
Product/service Link to details
SP 230DNw Affected. For details, please refer to the following URL.
https://www.ricoh.com/products/security/vulnerabilities/adv?id=ricoh-prod000166-2026-000001
SP 230SFNw
Affected. For details, please refer to the following URL.
https://www.ricoh.com/products/security/vulnerabilities/adv?id=ricoh-prod000169-2026-000001
Contact
Please contact your local Ricoh representative or dealer if you have any queries.
| About Ricoh |
Ricoh is a leading provider of integrated digital services and print and imaging solutions designed to support digital transformation of workplaces, workspaces and optimise business performance.
Headquartered in Tokyo, Ricoh’s global operation reaches customers in approximately 200 countries and regions, supported by cultivated knowledge, technologies, and organisational capabilities nurtured over its 85-year history. In the financial year ended March 2025, Ricoh Group had worldwide sales of 2,527 billion yen (approx. 16.8 billion USD).
It is Ricoh’s mission and vision to empower individuals to find Fulfillment through Work by understanding and transforming how people work so we can unleash their potential and creativity to realise a sustainable future.
For further information, please visit www.ricoh.com