CNNVD-202602-1367 Information
CNNVD ID
CNNVD-202602-1367
Related CVE
- CNNVD Published: 2026-02-09
Description (Chinese)
OKI Configuration Tool等都是OKI公司的产品。OKI Configuration Tool是一个配置管理工具。RICOH SP C740等都是日本RICOH公司的产品。RICOH SP C740是一款彩色激光打印机。RICOH P C6000L是一款彩色打印机。 Oki、Ricoh和Murata Machinery多款产品存在代码问题漏洞,该漏洞源于Windows服务注册了未加引号的文件路径,可能导致具有系统驱动器根目录写入权限的用户以SYSTEM权限执行任意代码。以下产品受到影响:RICOH P C6000L 、RICOH SP C740 、Murata Machinery MFX-C3400、Murata Machinery MFX-C3400N 、Oki Configuration Tool、Oki smart Print Super Vision 。
Description (English)
OKI Construction Tool and so on are the products of OkI. OKI Construction Tool is a configuration management tool. RICOH SP C740 etc. are products of RICOH Japan. RICOH SP C740 is a colour laser printer. RICOH P C60000L is a colour printer. Oki, Ricoh and Murata Machinery have a code breach that stems from the Windows service ’ s registration of unquoted file paths, which may result in any user with SYSTEM permission to write to a system drive root directory. The following products were affected: RICOH P C60000L, RICOH SP C740, Murata Machinery MFX-C3400, Murata Machinery MFX-C3400N, Oki Construction Tool, Oki smart Prince Super Vision.
Vulnerability Type
代码问题
Affected Vendor
OKI
Published
2026-02-09
Last Modified
2026-02-24
References
https://www.oki.com/jp/printing/support/important-information/2026/info-260209/index.html https://www.muratec.jp/ce/support/announce_sp_20260209.html https://www.oki.com/jp/product_security/sa_2026_0001_en.html https://jvn.jp/en/jp/JVN55395471/ https://jp.ricoh.com/security/products/vulnerabilities/vul?id=ricoh-2026-000002 https://access.redhat.com/security/cve/cve-2026-24466
Patch
https://jp.ricoh.com/security/products/vulnerabilities/vul?id=ricoh-2026-000002
Share on: