Notice on potential impact of "Apache Commons Text vulnerability" (CVE-2022-42889) towards Ricoh products and services
Last updated: 04:00 pm on February 07, 2023 (2023-02-07T14:00:00+09:00)
First published: 11:40 am on October 27, 2022 (2022-10-27T09:40:00+09:00)
Ricoh Company, Ltd.
Ricoh understands the importance of security and is committed to managing its products and services with the most advanced security technologies possible for its customers worldwide.
Ricoh is aware of the reported "Apache Commons Text vulnerability" (CVE-2022-42889). A vulnerability in the variable interpolator of Apache Commons Text, a library for algorithms related to string processing, may allow arbitrary code execution if malicious input is processed. Please refer to the following URL for further details. https://nvd.nist.gov/vuln/detail/CVE-2022-42889
Vulnerability Information ID | ricoh-2022-000001 |
Version | 1.06E |
CVE ID(CWE ID) | CVE-2022-42889 ( CWE-94 ) |
CVSSv3 score | 9.8 CRITICAL |
Overall status | Investigation completed |
List 1 below shows our investigation status/result, the vulnerability impact on Ricoh's major products and services.
List 1: Ricoh products and services affected by this vulnerability
List 2: Ricoh products and services affected by this vulnerability
No data
Contact
Please contact your local Ricoh representative or dealer if you have any queries.
History:
2023-02-07T14:00:00+09:00 : 1.06E Updated contents
2022-11-18T18:30:00+09:00 : 1.05E Updated contents
2022-11-01T18:00:00+09:00 : 1.04E Updated contents
2022-10-31T18:00:00+09:00 : 1.03E Updated contents
2022-10-28T19:00:00+09:00 : 1.02E Updated contents
2022-10-27T17:00:00+09:00 : 1.01E Updated contents
2022-10-27T09:40:00+09:00 : 1.00E Initial public release
News
Keep up to date
- 14Nov
Ricoh IM C320F Wins a 2025 Pick Award from Keypoint Intelligence
- 31Oct
Ricoh publishes Ricoh Group Integrated Report 2024 and Ricoh Group Environmental Report 2024
- 18Oct
Ricoh joins the Japan Center for Engagement and Remedy on Business and Human Rights as a regular member
- 10Oct
Ricoh Recognised as a Leader in Print Security by Quocirca for 2024