CVE-2018-16188

SQL injection vulnerability in the RICOH Interactive Whiteboard D2200 V1.3 to V2.2, D5500 V1.3 to V2.2, D5510 V1.3 to V2.2, the display versions with RICOH Interactive Whiteboard Controller Type1 V1.3 to V2.2 attached (D5520, D6500, D6510, D7500, D8400), and the display versions with RICOH Interactive Whiteboard Controller Type2 V3.0 to V3.1.10137.0 attached (D5520, D6510, D7500, D8400) allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:ricoh:d2200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:d2200:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:ricoh:d5500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:d5500:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:ricoh:d5510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:d5510:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
OR cpe:2.3:o:ricoh:d5520_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ricoh:d5520_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:d5520:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:ricoh:d6500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:d6500:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
OR cpe:2.3:o:ricoh:d6510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ricoh:d6510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:d6510:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
OR cpe:2.3:o:ricoh:d7500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ricoh:d7500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:d7500:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
OR cpe:2.3:o:ricoh:d8400_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ricoh:d8400_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:d8400:-:*:*:*:*:*:*:*

Information

Published : 2019-01-09 15:29

Updated : 2019-02-08 08:32


NVD link : CVE-2018-16188

Mitre link : CVE-2018-16188


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

ricoh

  • d5520
  • d6500
  • d5500_firmware
  • d5500
  • d8400
  • d5510
  • d2200_firmware
  • d2200
  • d6510_firmware
  • d6500_firmware
  • d7500_firmware
  • d7500
  • d6510
  • d5510_firmware
  • d5520_firmware
  • d8400_firmware