Specific Ricoh MFP and Printer Products - Vulnerabilities in the PostScript
Specific Ricoh MFP and Printer Products - Vulnerabilities in the PostScript interpreter (CVE-2024-11344, CVE-2024-11345, CVE-2024-11346, CVE-2024-11347) and the embedded web server (CVE-2025-1127)
First published: 06:00 pm on March 17, 2025 (2025-03-18T03:00:00+09:00)
Ricoh Company, Ltd.
Ricoh has identified vulnerabilities in the PostScript interpreter (CVE-2024-11344, CVE-2024-11345, CVE-2024-11346, CVE-2024-11347) and the embedded web server (CVE-2025-1127) towards Ricoh products.
These vulnerabilities allow arbitrary code to be executed remotely.
CVE-2024-11344: A type confusion vulnerability has been identified in the Postscript interpreter.
CVE-2024-11345: A heap-based memory vulnerability has been identified in the Postscript interpreter.
CVE-2024-11346: A type confusion vulnerability has been identified in the Postscript interpreter.
CVE-2024-11347: An integer overflow vulnerability has been identified in the Postscript interpreter.
CVE-2025-1127: A combination Path Traversal and Concurrent Execution vulnerability exists within the embedded web server.
List 1 below shows the affected printers. Ricoh offers countermeasures detailed in the hyperlinked pages in the list.
List1:Ricoh products and services affected by this vulnerability:
| Product/service | Link to details |
| M C240FW | Affected. For details, please refer to the following URL. |
| P C200W | Affected. For details, please refer to the following URL. |
Vulnerability Information ID: ricoh-2025-000003
Version: 1.00E
CVE ID(CWE ID): CVE-2024-11344 ( CWE-843 ) CVE-2024-11345 ( CWE-466 ) CVE-2024-11346 ( CWE-843 ) CVE-2024-11347 ( CWE-190 ) CVE-2025-1127 ( CWE-22CWE-362 )
CVSSv3 base score: 9.1 CRITICAL
| About Ricoh |
Ricoh is a leading provider of integrated digital services and print and imaging solutions designed to support digital transformation of workplaces, workspaces and optimise business performance.
Headquartered in Tokyo, Ricoh’s global operation reaches customers in approximately 200 countries and regions, supported by cultivated knowledge, technologies, and organisational capabilities nurtured over its 85-year history. In the financial year ended March 2024, Ricoh Group had worldwide sales of 2,348 billion yen (approx. 15.5 billion USD).
It is Ricoh’s mission and vision to empower individuals to find Fulfilment through Work by understanding and transforming how people work so we can unleash their potential and creativity to realise a sustainable future.
For further information, please visit www.ricoh.com