CVE-2024-36480

EUVD-2024-36116
Use of hard-coded credentials issue exists in Ricoh Streamline NX PC Client ver.3.7.2 and earlier. If this vulnerability is exploited, an attacker may obtain LocalSystem Account of the PC where the product is installed. As a result, unintended operations may be performed on the PC.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
ricohstreamline_nx_pc_client
𝑥
≤ 3.7.2
ADP
Common Weakness Enumeration
References
https://jvn.jp/en/jp/JVN00442488/
https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2024-000005
https://jvn.jp/en/jp/JVN00442488/
https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2024-000005