CNNVD-202506-3750 Information

CNNVD ID

CNNVD-202506-3750

Related CVE

CVE-2025-41439

• CNNVD Published: 2025-06-30

Description (Chinese)

Ricoh Streamline NX Client Tool是日本理光（Ricoh）公司的一款可扩展的文档管理应用程序和工具。 Ricoh Streamline NX Client Tool存在跨站脚本漏洞，该漏洞源于SLNX帮助文档中特定参数未经验证，可能导致反射型跨站脚本攻击。

Description (English)

Ricoh Streamline NX Clinic Tool is a scalable document management application and tool for the Japanese company Ricoh. There is a cross-site script loophole in Ricoh Streadline NX Clinic Tool, which stems from the unverified nature of the specific parameters in the SLNX help document, which may result in a reflex-type cross-site script attack.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

理光

Published

2025-06-30

Last Modified

2026-02-24

References

https://jvn.jp/en/jp/JVN24333956/ https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2025-000008 https://access.redhat.com/security/cve/cve-2025-41439