Notice of security investigation: "Vulnerability of SLP (Service Location Protocol) implementation that allows reflected DoS attacks via UDP" (CVE-2023-29552)
First published: 02:00 pm on October 02, 2023 (2023-10-02T12:00:00+09:00)
Ricoh Company, Ltd.
Ricoh understands the importance of security and is committed to managing its products and services with the most advanced security technologies possible for its customers worldwide.
Ricoh is aware of the reported "Vulnerability of SLP (Service Location Protocol) implementation that allows reflected DoS attacks via UDP" (CVE-2023-29552) affects certain products and services that Ricoh develops, manufactures, and offers.
Please refer to the following URL for vulnerability description.
https://nvd.nist.gov/vuln/detail/CVE-2023-29552
List 1 below shows the affected products and services. Ricoh offers measures detailed in the hyperlinked pages in the list.
| Vulnerability Information ID | ricoh-2023-000004 |
| Version | 1.00E |
| CVE ID(CWE ID) | CVE-2023-29552 ( N/A ) |
| CVSSv3 score | 7.5 HIGH |
List 1: Ricoh products and services affected by this vulnerability
| Product/service | Link to details |
| RICOH Streamline NX V3 | Affected. For details, please refer to the following URL. https://www.ricoh.com/products/security/vulnerabilities/adv?id=ricoh-prod000077-2023-000004 |
Contact
Please contact your local Ricoh representative or dealer if you have any queries.
History:
2023-10-02T12:00:00+09:00 : 1.00E Initial public release
News
Keep up to date
- 29Nov
Ricoh received a five-star rating in the Fifth Nikkei SDGs Management Survey
- 22Nov
Ricoh Chairperson hands policy proposal on accelerating decarbonization through green transformation to Minister of Economy, Trade and Industry as Co-chair of JCLP
- 13Nov
Ricoh Chairperson takes the stage at Reuters NEXT 2023 "Empowering Colleagues to be ESG Advocates"
- 08Nov
Ricoh establishes a fund to generate innovation