CVE-2019-11845: XSS
First published: Tue May 14 2019(Updated: )
An HTML Injection vulnerability has been discovered on the RICOH SP 4510DN via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ricoh SP 4510DN Firmware | ||
| Ricoh SP 4510DN Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-11845?
CVE-2019-11845 is an HTML Injection vulnerability that has been discovered on the RICOH SP 4510DN printer.
How does the HTML Injection vulnerability occur on the RICOH SP 4510DN?
The HTML Injection vulnerability occurs via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn parameter.
What is the severity of CVE-2019-11845?
The severity of CVE-2019-11845 is medium with a CVSS score of 6.1.
How can I fix the HTML Injection vulnerability on the RICOH SP 4510DN?
To fix the HTML Injection vulnerability, it is recommended to apply the latest firmware update provided by RICOH.
Where can I find more information about CVE-2019-11845?
You can find more information about CVE-2019-11845 at the following link: http://packetstormsecurity.com/files/152789/RICOH-SP-4510DN-Printer-HTML-Injection.html
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ricoh
- canonical/ricoh sp 4510dn firmware