Home

Description

Path traversal vulnerability exists in RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.242.0. If this vulnerability is exploited, arbitrary code may be executed on the PC where the product is running by tampering with specific files used on the product.

PUBLISHED Reserved 2025-06-12 | Published 2025-06-13 | Updated 2025-06-13 | Assigner jpcert




CRITICAL: 9.8CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CRITICAL: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

Improper limitation of a pathname to a restricted directory ('Path Traversal')

Product status

versions 3.5.0 to 3.242.0
affected

References

www.ricoh.com/...ty/vulnerabilities/vul?id=ricoh-2025-000005

jvn.jp/en/jp/JVN27937557/

cve.org (CVE-2025-46783)

nvd.nist.gov (CVE-2025-46783)

Download JSON