CVE-2022-43969

9.1

CRITICAL

Ricoh mp_c4504ex Authentication Bypass Vulnerability

Description

Ricoh mp_c4504ex devices with firmware 1.06 mishandle credentials.

INFO

Published Date :

Feb. 16, 2023, 2:15 p.m.

Last Modified :

Aug. 8, 2023, 2:22 p.m.

Source :

[email protected]

Remotely Exploitable :

Yes !

Impact Score :

5.2

Exploitability Score :

3.9

Affected Products

The following products are affected by CVE-2022-43969 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product
1	Ricoh	mp_c4504ex_firmware
2	Ricoh	mp_c307_firmware
3	Ricoh	mp_305\+_firmware
4	Ricoh	mp_c6003_firmware
5	Ricoh	mp_c407_firmware
6	Ricoh	mp_c406_firmware
7	Ricoh	mp_c306_firmware
8	Ricoh	im_cw2200_firmware
9	Ricoh	im_cw2201_firmware
10	Ricoh	mp_402spf_firmware
11	Ricoh	mp_c2003_smart_operation_panel_firmware
12	Ricoh	mp_c2503_smart_operation_panel_firmware
13	Ricoh	mp_c2003_firmware
14	Ricoh	mp_c2503_firmware
15	Ricoh	mp_c4503_firmware
16	Ricoh	mp_c5503_firmware
17	Ricoh	mp_c3003_firmware
18	Ricoh	mp_c3503_firmware
19	Ricoh	mp_c4503_smart_operation_panel_firmware
20	Ricoh	mp_c5503_smart_operation_panel_firmware
21	Ricoh	mp_c6003_smart_operation_panel_firmware
22	Ricoh	mp_c3003_smart_operation_panel_firmware
23	Ricoh	mp_c3503_smart_operation_panel_firmware
24	Ricoh	mp_c2004ex_firmware
25	Ricoh	mp_c2504ex_firmware
26	Ricoh	mp_c5504ex_firmware
27	Ricoh	mp_c6004ex_firmware
28	Ricoh	mp_c3004ex_firmware
29	Ricoh	mp_c3504ex_firmware
30	Ricoh	pro_c5300s_firmware
31	Ricoh	pro_c5310s_firmware
32	Ricoh	m_c2001_firmware
33	Ricoh	im_c530f_firmware
34	Ricoh	im_c530fb_firmware
35	Ricoh	im_350f_firmware
36	Ricoh	im_350_firmware
37	Ricoh	im_430f_firmware
38	Ricoh	im_430fb_firmware
39	Ricoh	im_550f_firmware
40	Ricoh	im_600f_firmware
41	Ricoh	im_600srf_firmware
42	Ricoh	im_7000_firmware
43	Ricoh	im_8000_firmware
44	Ricoh	im_9000_firmware
45	Ricoh	mp_2555_firmware
46	Ricoh	mp_3055_firmware
47	Ricoh	mp_3555_firmware
48	Ricoh	mp_4055_firmware
49	Ricoh	mp_5055_firmware
50	Ricoh	mp_6055_firmware
51	Ricoh	im_2500_firmware
52	Ricoh	im_3000_firmware
53	Ricoh	im_3500_firmware
54	Ricoh	im_4000_firmware
55	Ricoh	im_5000_firmware
56	Ricoh	im_6000_firmware
57	Ricoh	im_2702_firmware
58	Ricoh	im_c400f_firmware
59	Ricoh	im_c300f_firmware
60	Ricoh	im_c300_firmware
61	Ricoh	im_c400srf_firmware
62	Ricoh	im_c2000_firmware
63	Ricoh	im_c2500_firmware
64	Ricoh	im_c6000_firmware
65	Ricoh	im_c5500_firmware
66	Ricoh	im_c3000_firmware
67	Ricoh	im_c3500_firmware
68	Ricoh	im_c4500_firmware
69	Ricoh	mp_c2504_firmware
70	Ricoh	mp_c2004_firmware
71	Ricoh	mp_c4504_firmware
72	Ricoh	mp_c5504_firmware
73	Ricoh	mp_c6004_firmware
74	Ricoh	mp_c3504_firmware
75	Ricoh	mp_c3004_firmware
76	Ricoh	im_c6500_firmware
77	Ricoh	im_c8000_firmware

: Total Affected Vendor : 1 | Products : 77

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2022-43969.

URL	Resource
https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2022-000002	Vendor Advisory
https://www.ricoh.com/software/dev_soft_manager	Product

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2022-43969 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2022-43969 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

CVE Modified by [email protected]

May. 14, 2024

Action Type Old Value New Value

Initial Analysis by [email protected]

Feb. 24, 2023

Action	Type	Old Value	New Value
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Changed	Reference Type	https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2022-000002 No Types Assigned	https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2022-000002 Vendor Advisory
Changed	Reference Type	https://www.ricoh.com/software/dev_soft_manager No Types Assigned	https://www.ricoh.com/software/dev_soft_manager Product
Added	CWE		NIST CWE-522
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c307_firmware::::::::* versions up to (including) 1.14 OR cpe:2.3:h:ricoh:mp_c307:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c407_firmware::::::::* versions up to (including) 1.14 OR cpe:2.3:h:ricoh:mp_c407:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c406_firmware::::::::* versions up to (including) 1.20 OR cpe:2.3:h:ricoh:mp_c406:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c306_firmware::::::::* versions up to (including) 1.20 OR cpe:2.3:h:ricoh:mp_c306:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_cw2200_firmware::::::::* versions up to (including) 1.01 OR cpe:2.3:h:ricoh:im_cw2200:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_cw2201_firmware::::::::* versions up to (including) 1.11 OR cpe:2.3:h:ricoh:im_cw2201:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_402spf_firmware::::::::* versions up to (including) 1.12 OR cpe:2.3:h:ricoh:mp_402spf:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c2003_smart_operation_panel_firmware::::::::* versions up to (including) 1.14 OR cpe:2.3:h:ricoh:mp_c2003_smart_operation_panel:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c2503_smart_operation_panel_firmware::::::::* versions up to (including) 1.14 OR cpe:2.3:h:ricoh:mp_c2503_smart_operation_panel:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c2003_firmware::::::::* versions up to (including) 1.17 OR cpe:2.3:h:ricoh:mp_c2003:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c2503_firmware::::::::* versions up to (including) 1.17 OR cpe:2.3:h:ricoh:mp_c2503:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c4503_firmware::::::::* versions up to (including) 1.12 OR cpe:2.3:h:ricoh:mp_c4503:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c5503_firmware::::::::* versions up to (including) 1.12 OR cpe:2.3:h:ricoh:mp_c5503:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c6003_firmware::::::::* versions up to (including) 1.12 OR cpe:2.3:h:ricoh:mp_c6003:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c3003_firmware::::::::* versions up to (including) 1.19 OR cpe:2.3:h:ricoh:mp_c3003:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c3503_firmware::::::::* versions up to (including) 1.19 OR cpe:2.3:h:ricoh:mp_c3503:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c4503_smart_operation_panel_firmware::::::::* versions up to (including) 2.17 OR cpe:2.3:h:ricoh:mp_c4503_smart_operation_panel:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c5503_smart_operation_panel_firmware::::::::* versions up to (including) 2.17 OR cpe:2.3:h:ricoh:mp_c5503_smart_operation_panel:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c6003_smart_operation_panel_firmware::::::::* versions up to (including) 2.17 OR cpe:2.3:h:ricoh:mp_c6003_smart_operation_panel:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c3003_smart_operation_panel_firmware::::::::* versions up to (including) 2.15 OR cpe:2.3:h:ricoh:mp_c3003_smart_operation_panel:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c3503_smart_operation_panel_firmware::::::::* versions up to (including) 2.15 OR cpe:2.3:h:ricoh:mp_c3503_smart_operation_panel:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c2004ex_firmware::::::::* versions up to (including) 1.15 OR cpe:2.3:h:ricoh:mp_c2004ex:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c2504ex_firmware::::::::* versions up to (including) 1.15 OR cpe:2.3:h:ricoh:mp_c2504ex:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c4504ex_firmware::::::::* versions up to (including) 1.15 OR cpe:2.3:h:ricoh:mp_c4504ex:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c5504ex_firmware::::::::* versions up to (including) 1.15 OR cpe:2.3:h:ricoh:mp_c5504ex:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c6004ex_firmware::::::::* versions up to (including) 1.15 OR cpe:2.3:h:ricoh:mp_c6004ex:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c3004ex_firmware::::::::* versions up to (including) 1.15 OR cpe:2.3:h:ricoh:mp_c3004ex:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c3504ex_firmware::::::::* versions up to (including) 1.15 OR cpe:2.3:h:ricoh:mp_c3504ex:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:pro_c5300s_firmware::::::::* versions up to (including) 1.07 OR cpe:2.3:h:ricoh:pro_c5300s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:pro_c5310s_firmware::::::::* versions up to (including) 1.07 OR cpe:2.3:h:ricoh:pro_c5310s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:m_c2001_firmware::::::::* versions up to (including) 1.01 OR cpe:2.3:h:ricoh:m_c2001:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c530f_firmware::::::::* versions up to (including) 6.17 OR cpe:2.3:h:ricoh:im_c530f:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c530fb_firmware::::::::* versions up to (including) 6.17 OR cpe:2.3:h:ricoh:im_c530fb:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_350f_firmware::::::::* versions up to (including) 1.10 OR cpe:2.3:h:ricoh:im_350f:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_350_firmware::::::::* versions up to (including) 1.10 OR cpe:2.3:h:ricoh:im_350:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_430f_firmware::::::::* versions up to (including) 1.10 OR cpe:2.3:h:ricoh:im_430f:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_430fb_firmware::::::::* versions up to (including) 1.10 OR cpe:2.3:h:ricoh:im_430fb:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_305\+_firmware::::::::* versions up to (including) 1.12 OR cpe:2.3:h:ricoh:mp_305\+:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_350_firmware::::::::* versions up to (including) 1.10 OR cpe:2.3:h:ricoh:im_350:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_430fb_firmware::::::::* versions up to (including) 1.10 OR cpe:2.3:h:ricoh:im_430fb:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_550f_firmware::::::::* versions up to (including) 5.02 OR cpe:2.3:h:ricoh:im_550f:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_600f_firmware::::::::* versions up to (including) 5.02 OR cpe:2.3:h:ricoh:im_600f:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_600srf_firmware::::::::* versions up to (including) 5.02 OR cpe:2.3:h:ricoh:im_600srf:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_7000_firmware::::::::* versions up to (including) 2.02 OR cpe:2.3:h:ricoh:im_7000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_8000_firmware::::::::* versions up to (including) 2.02 OR cpe:2.3:h:ricoh:im_8000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_9000_firmware::::::::* versions up to (including) 2.02 OR cpe:2.3:h:ricoh:im_9000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_2555_firmware::::::::* versions up to (including) 1.18 OR cpe:2.3:h:ricoh:mp_2555:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_3055_firmware::::::::* versions up to (including) 1.18 OR cpe:2.3:h:ricoh:mp_3055:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_3555_firmware::::::::* versions up to (including) 1.18 OR cpe:2.3:h:ricoh:mp_3555:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_4055_firmware::::::::* versions up to (including) 1.18 OR cpe:2.3:h:ricoh:mp_4055:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_5055_firmware::::::::* versions up to (including) 1.18 OR cpe:2.3:h:ricoh:mp_5055:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_6055_firmware::::::::* versions up to (including) 1.18 OR cpe:2.3:h:ricoh:mp_6055:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_2500_firmware::::::::* versions up to (including) 4.02 OR cpe:2.3:h:ricoh:im_2500:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_3000_firmware::::::::* versions up to (including) 4.02 OR cpe:2.3:h:ricoh:im_3000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_3500_firmware::::::::* versions up to (including) 4.02 OR cpe:2.3:h:ricoh:im_3500:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_4000_firmware::::::::* versions up to (including) 4.02 OR cpe:2.3:h:ricoh:im_4000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_5000_firmware::::::::* versions up to (including) 4.02 OR cpe:2.3:h:ricoh:im_5000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_6000_firmware::::::::* versions up to (including) 4.02 OR cpe:2.3:h:ricoh:im_6000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_2702_firmware::::::::* versions up to (including) 1.12 OR cpe:2.3:h:ricoh:im_2702:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c400f_firmware::::::::* versions up to (including) 5.03 OR cpe:2.3:h:ricoh:im_c400f:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c300f_firmware::::::::* versions up to (including) 5.03 OR cpe:2.3:h:ricoh:im_c300f:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c300_firmware::::::::* versions up to (including) 5.03 OR cpe:2.3:h:ricoh:im_c300:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c400srf_firmware::::::::* versions up to (including) 5.03 OR cpe:2.3:h:ricoh:im_c400srf:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c2000_firmware::::::::* versions up to (including) 6.03 OR cpe:2.3:h:ricoh:im_c2000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c2500_firmware::::::::* versions up to (including) 6.03 OR cpe:2.3:h:ricoh:im_c2500:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c6000_firmware::::::::* versions up to (including) 6.03 OR cpe:2.3:h:ricoh:im_c6000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c5500_firmware::::::::* versions up to (including) 6.03 OR cpe:2.3:h:ricoh:im_c5500:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c3000_firmware::::::::* versions up to (including) 6.03 OR cpe:2.3:h:ricoh:im_c3000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c3500_firmware::::::::* versions up to (including) 6.03 OR cpe:2.3:h:ricoh:im_c3500:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c4500_firmware::::::::* versions up to (including) 6.03 OR cpe:2.3:h:ricoh:im_c4500:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c2504_firmware::::::::* versions up to (including) 1.21 OR cpe:2.3:h:ricoh:mp_c2504:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c2004_firmware::::::::* versions up to (including) 1.21 OR cpe:2.3:h:ricoh:mp_c2004:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c4504_firmware::::::::* versions up to (including) 1.22 OR cpe:2.3:h:ricoh:mp_c4504:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c5504_firmware::::::::* versions up to (including) 1.22 OR cpe:2.3:h:ricoh:mp_c5504:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c6004_firmware::::::::* versions up to (including) 1.22 OR cpe:2.3:h:ricoh:mp_c6004:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c3504_firmware::::::::* versions up to (including) 1.21 OR cpe:2.3:h:ricoh:mp_c3504:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:mp_c3004_firmware::::::::* versions up to (including) 1.21 OR cpe:2.3:h:ricoh:mp_c3004:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c6500_firmware::::::::* versions up to (including) 4.0 OR cpe:2.3:h:ricoh:im_c6500:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:ricoh:im_c8000_firmware::::::::* versions up to (including) 4.0 OR cpe:2.3:h:ricoh:im_c8000:-:::::::*

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2022-43969 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2022-43969 weaknesses.

CVE-2022-43969

Ricoh mp_c4504ex Authentication Bypass Vulnerability

Description

INFO

Feb. 16, 2023, 2:15 p.m.

Aug. 8, 2023, 2:22 p.m.

[email protected]

Yes !

5.2

3.9

Affected Products

References to Advisories, Solutions, and Tools

CVE Modified by [email protected]

Initial Analysis by [email protected]

CWE - Common Weakness Enumeration

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit Prediction

0.16 }} 0.00%

0.53448

CVSS31 - Vulnerability Scoring System

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable