Multiple laser printers and MFPs (multifunction printers) which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerability. An arbitrary script may be executed on the web browser of the user who accesses a crafted URL.
History

Sat, 11 Jul 2026 17:45:00 +0000

Type Values Removed Values Added
Title Reflected XSS in Ricoh Web Image Monitor on Laser Printers and MFPs

Fri, 10 Jul 2026 12:15:00 +0000

Type Values Removed Values Added
Title Reflected XSS in Ricoh Web Image Monitor on Laser Printers and MFPs

Thu, 09 Jul 2026 07:00:00 +0000

Type Values Removed Values Added
Description Multiple laser printers and MFPs (multifunction printers) which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerability. An arbitrary script may be executed on the web browser of the user who accesses Web Image Monitor. Multiple laser printers and MFPs (multifunction printers) which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerability. An arbitrary script may be executed on the web browser of the user who accesses a crafted URL.

Wed, 01 Jul 2026 10:00:00 +0000

Type Values Removed Values Added
First Time appeared Ricoh
Ricoh multiple Laser Printers And Mfps Which Implement Web Image Monitor
Vendors & Products Ricoh
Ricoh multiple Laser Printers And Mfps Which Implement Web Image Monitor

Tue, 30 Jun 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 30 Jun 2026 09:15:00 +0000

Type Values Removed Values Added
Title Reflected XSS in Ricoh Web Image Monitor on Laser Printers and MFPs

Tue, 30 Jun 2026 07:15:00 +0000

Type Values Removed Values Added
Description Multiple laser printers and MFPs (multifunction printers) which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerability. An arbitrary script may be executed on the web browser of the user who accesses Web Image Monitor.
Weaknesses CWE-79
References
Metrics cvssV3_0

{'score': 6.1, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}

cvssV4_0

{'score': 5.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2026-06-30T06:02:36.439Z

Updated: 2026-07-09T06:21:28.843Z

Reserved: 2026-06-23T06:40:45.379Z

Link: CVE-2026-56809

cve-icon Vulnrichment

Updated: 2026-06-30T12:52:33.727Z

cve-icon NVD

No data.

cve-icon Redhat

No data.