Home

Description

Incorrect privilege assignment vulnerability exists in ScanSnap Manager installers versions prior to V6.5L61. If this vulnerability is exploited, an authenticated local attacker may escalate privileges and execute an arbitrary command.

PUBLISHED Reserved 2025-08-20 | Published 2025-08-27 | Updated 2025-08-27 | Assigner jpcert




HIGH: 7.8CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

HIGH: 8.5CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

Incorrect privilege assignment

Product status

prior to V6.5L61
affected

References

www.pfu.ricoh.com/imaging/news/news20230606.html

www.pfu.ricoh.com/scansnap/software/sshome/requirement.html

jvn.jp/en/jp/JVN69684540/

cve.org (CVE-2025-57797)

nvd.nist.gov (CVE-2025-57797)

Download JSON