CVE-2019-19363

24.01.2020, 18:15

An issue was discovered in Ricoh (including Savin and Lanier) Windows printer drivers prior to 2020 that allows attackers local privilege escalation. Affected drivers and versions are: PCL6 Driver for Universal Print - Version 4.0 or later PS Driver for Universal Print - Version 4.0 or later PC FAX Generic Driver - All versions Generic PCL5 Driver - All versions RPCS Driver - All versions PostScript3 Driver - All versions PCL6 (PCL XL) Driver - All versions RPCS Raster Driver - All version

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 84%

Vendor	Product	Version
ricoh	generic_pcl5_driver	-
ricoh	pc_fax_generic_driver	-
ricoh	pcl6_\(pcl_xl\)_driver	-
ricoh	pcl6_driver_for_universal_print	4.0 ≤ 𝑥 < 4.26
ricoh	postscript3_driver	-
ricoh	ps_driver_for_universal_print	4.0 ≤ 𝑥 < 4.26
ricoh	rpcs_driver	-
ricoh	rpcs_raster_driver	-

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-732 - Incorrect Permission Assignment for Critical Resource
The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

References

http://jvn.jp/en/jp/JVN15697526/index.html

http://packetstormsecurity.com/files/156082/Ricoh-Printer-Driver-Local-Privilege-Escalation.html

http://packetstormsecurity.com/files/156251/Ricoh-Driver-Privilege-Escalation.html

http://seclists.org/fulldisclosure/2020/Jan/34

https://www.ricoh.com/info/2020/0122_1/

http://jvn.jp/en/jp/JVN15697526/index.html

http://packetstormsecurity.com/files/156082/Ricoh-Printer-Driver-Local-Privilege-Escalation.html

http://packetstormsecurity.com/files/156251/Ricoh-Driver-Privilege-Escalation.html

http://seclists.org/fulldisclosure/2020/Jan/34

https://www.ricoh.com/info/2020/0122_1/