CVE-2019-19363
First published: Fri Jan 24 2020(Updated: )
An issue was discovered in Ricoh (including Savin and Lanier) Windows printer drivers prior to 2020 that allows attackers local privilege escalation. Affected drivers and versions are: PCL6 Driver for Universal Print - Version 4.0 or later PS Driver for Universal Print - Version 4.0 or later PC FAX Generic Driver - All versions Generic PCL5 Driver - All versions RPCS Driver - All versions PostScript3 Driver - All versions PCL6 (PCL XL) Driver - All versions RPCS Raster Driver - All version
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ricoh Generic Pcl5 Driver | ||
| Ricoh PC Fax Generic Driver | ||
| Ricoh PCL6 (PCL XL) Driver | ||
| Ricoh Pcl6 Driver For Universal Print | >=4.0<4.26 | |
| Ricoh Postscript3 Driver | ||
| Ricoh PS Driver for Universal Print | >=4.0<4.26 | |
| Ricoh RPCS Raster Driver | ||
| Ricoh RPCS Driver |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://jvn.jp/en/jp/JVN15697526/index.html
- http://packetstormsecurity.com/files/156082/Ricoh-Printer-Driver-Local-Privilege-Escalation.html
- http://packetstormsecurity.com/files/156251/Ricoh-Driver-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2020/Jan/34
- https://www.ricoh.com/info/2020/0122_1/
Frequently Asked Questions
What is CVE-2019-19363?
CVE-2019-19363 is a vulnerability in Ricoh Windows printer drivers that allows attackers local privilege escalation.
Which Ricoh printer drivers are affected by CVE-2019-19363?
The affected Ricoh printer drivers are: Ricoh Generic Pcl5 Driver, Ricoh Pc Fax Generic Driver, Ricoh Pcl6 (Pcl Xl) Driver, Ricoh Pcl6 Driver For Universal Print, Ricoh Postscript3 Driver, Ricoh Ps Driver For Universal Print, Ricoh Rpcs Driver, Ricoh Rpcs Raster Driver.
What is the severity of CVE-2019-19363?
CVE-2019-19363 has a severity rating of 7.8 (High).
How can I fix CVE-2019-19363?
To fix CVE-2019-19363, users should update their Ricoh printer drivers to version 4.26 or later of the PCL6 Driver for Universal Print or PS Driver for Universal Print.
Where can I find more information about CVE-2019-19363?
You can find more information about CVE-2019-19363 on the following websites: [http://jvn.jp/en/jp/JVN15697526/index.html](http://jvn.jp/en/jp/JVN15697526/index.html), [http://packetstormsecurity.com/files/156082/Ricoh-Printer-Driver-Local-Privilege-Escalation.html](http://packetstormsecurity.com/files/156082/Ricoh-Printer-Driver-Local-Privilege-Escalation.html), [http://packetstormsecurity.com/files/156251/Ricoh-Driver-Privilege-Escalation.html](http://packetstormsecurity.com/files/156251/Ricoh-Driver-Privilege-Escalation.html).
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/references
- agent/severity
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ricoh
- canonical/ricoh generic pcl5 driver
- canonical/ricoh pc fax generic driver
- canonical/ricoh pcl6 (pcl xl) driver
- canonical/ricoh pcl6 driver for universal print
- version/ricoh pcl6 driver for universal print/4.0
- canonical/ricoh postscript3 driver
- canonical/ricoh ps driver for universal print
- version/ricoh ps driver for universal print/4.0
- canonical/ricoh rpcs raster driver
- canonical/ricoh rpcs driver