CVE-2023-30759 Information

Description

The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to detect its modification and may spawn an unexpected process with the administrative privilege. If a non-administrative user modifies the driver installation package and runs it on the target PC an arbitrary program may be executed with the administrative privilege.

Reference

https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2023-000001 https://jvn.jp/en/vu/JVNVU92207133/ https://www.ricoh.com/products/security/vulnerabilities/adv?id=ricoh-prod000048-2023-000001