Information
Ricoh understands the importance of security and is committed to managing its products and services with the most advanced security technologies possible for its customers worldwide.
Ricoh is aware of the reported Apache Log4j remote code execution vulnerability (CVE-2021-44228). Apache Log4j is an open-source logging JAVA-based library offered by Apache Software Foundation. Ricoh is currently investigating if any Ricoh products and services may be potentially impacted by this vulnerability.
Servers operating with Apache Log4j are potentially threatened, allowing a third party to remotely access the server and execute remote code by sending modified data to exploit this vulnerability.
https://logging.apache.org/log4j/2.x/security.html
Ricoh confirmed the following products and services that it develops, manufactures, and offers are not impacted by this vulnerability. Ricoh products and services not listed are under ongoing investigation.
| Office Products | Multifunction Printers/Copiers | Black & White MFP |
|---|---|---|
| Color MFP | ||
| Wide Format MFP | ||
| Printers | Black & White Laser Printers | |
| Color Laser Printers | ||
| Gel Jet Printers | ||
| Handy Printers | ||
| Printer based MFP | ||
| FAX | ||
| Digital Duplicators | ||
| Projectors | ||
| Video Conferencing | ||
| Interactive Whiteboards | ||
| Remote Communication Gates | Remote Communication Gate A2 | |
| Remote Communication Gate A | ||
| Remote Communication Gate Type N/L/BN1/BM1 | ||
| Software & Solutions | Card Authentication Package Series | |
| Device Manager NX Accounting | ||
| Device Manager NX Enterprise | ||
| Device Manager NX Lite | ||
| Device Manager NX Pro | ||
| Docuware | ||
| GlobalScan NX | ||
| Enhanced Locked Print Series | ||
| Printer Driver Packager NX | ||
| @Remote Connector NX | ||
| Ricoh Smart Integration (RSI) Platform and its applications | ||
| RICOH Print Management Cloud | ||
| RICOH Streamline NX V2 | ||
| RICOH Streamline NX V3 | ||
| Commercial & Industrial Printing | Garment Printers | |
Production Printers were listed as not being impacted as of December 16, however, investigation is ongoing. Updates will be provided as they are available.
For products and solutions from vendors other than Ricoh, we recommend customers to confirm latest information directly with relevant vendors.
Ricoh is committed to supporting customers across the globe, enabling them to operate Ricoh products equipped with the latest security settings. Additional updates on impacted Ricoh products and services and related countermeasures will be provided promptly on this page as they become available.
Ricoh is empowering digital workplaces using innovative technologies and services that enable individuals to work smarter from anywhere.
With cultivated knowledge and organizational capabilities nurtured over its 85-years history, Ricoh is a leading provider of digital services and information management, and print and imaging solutions designed to support digital transformation and optimize business performance.
Headquartered in Tokyo, Ricoh Group has major operations throughout the world and its products and services now reach customers in approximately 200 countries and regions. In the financial year ended March 2021, Ricoh Group had worldwide sales of 1,682 billion yen (approx. 15.1 billion USD).
For further information, please visit www.ricoh.com
###
© 2021 RICOH COMPANY, LTD. All rights reserved. All referenced product names are the trademarks of their respective companies.