CVE-2018-17310: XSS
First published: Wed Sep 26 2018(Updated: )
On the RICOH MP C1803 JPN printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| RICOH MP C1803 | ||
| Ricoh MP C1803 JPN Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-17310?
CVE-2018-17310 refers to the HTML Injection and Stored XSS vulnerabilities discovered on the RICOH MP C1803 JPN printer.
What is the severity of CVE-2018-17310?
The severity of CVE-2018-17310 is medium with a CVSS score of 6.1.
How do the HTML Injection and Stored XSS vulnerabilities affect the RICOH MP C1803 JPN printer?
The vulnerabilities allow an attacker to inject malicious HTML code and execute cross-site scripting attacks using the address entry function of the printer.
What is the affected software version of CVE-2018-17310?
The affected software version is the Ricoh MP C1803 JPN firmware.
Is the RICOH MP C1803 JPN printer vulnerable to the HTML Injection and Stored XSS vulnerabilities?
No, the RICOH MP C1803 JPN printer itself is not vulnerable, only the firmware version is affected.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/references
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ricoh
- canonical/ricoh mp c1803
- canonical/ricoh mp c1803 jpn firmware