Main content

Information

Update: Notice on potential impact of Apache Log4j vulnerability towards Ricoh products and services

December 15, 2021
Last updated: December 24, 2021
First published: December 15, 2021
Ricoh Company, Ltd.

Ricoh understands the importance of security and is committed to managing its products and services with the most advanced security technologies possible for its customers worldwide.

Ricoh is aware of the reported Apache Log4j remote code execution vulnerability (CVE-2021-44228). Apache Log4j is an open-source logging JAVA-based library offered by Apache Software Foundation. Ricoh is currently investigating if any Ricoh products and services may be potentially impacted by this vulnerability.

Servers operating with Apache Log4j are potentially threatened, allowing a third party to remotely access the server and execute remote code by sending modified data to exploit this vulnerability.
https://logging.apache.org/log4j/2.x/security.html

Ricoh confirmed the following products and services that it develops, manufactures, and offers are not impacted by this vulnerability. Ricoh products and services not listed are under ongoing investigation.

Office Products Multifunction Printers/Copiers Black & White MFP
Color MFP
Wide Format MFP
Printers Black & White Laser Printers
Color Laser Printers
Gel Jet Printers
Handy Printers
Printer based MFP
FAX
Digital Duplicators
Projectors
Video Conferencing
Interactive Whiteboards
Remote Communication Gates Remote Communication Gate A2
Remote Communication Gate A
Remote Communication Gate Type N/L/BN1/BM1
Software & Solutions Card Authentication Package Series
Device Manager NX Accounting
Device Manager NX Enterprise
Device Manager NX Lite
Device Manager NX Pro
Docuware
GlobalScan NX
Enhanced Locked Print Series
Printer Driver Packager NX
@Remote Connector NX
Ricoh Smart Integration (RSI) Platform and its applications
RICOH Print Management Cloud
RICOH Streamline NX V2
RICOH Streamline NX V3
Commercial & Industrial Printing Garment Printers

Production Printers were listed as not being impacted as of December 16, however, investigation is ongoing. Updates will be provided as they are available.

For products and solutions from vendors other than Ricoh, we recommend customers to confirm latest information directly with relevant vendors.

Ricoh is committed to supporting customers across the globe, enabling them to operate Ricoh products equipped with the latest security settings. Additional updates on impacted Ricoh products and services and related countermeasures will be provided promptly on this page as they become available.


| About Ricoh |

Ricoh is empowering digital workplaces using innovative technologies and services that enable individuals to work smarter from anywhere.

With cultivated knowledge and organizational capabilities nurtured over its 85-years history, Ricoh is a leading provider of digital services and information management, and print and imaging solutions designed to support digital transformation and optimize business performance.

Headquartered in Tokyo, Ricoh Group has major operations throughout the world and its products and services now reach customers in approximately 200 countries and regions. In the financial year ended March 2021, Ricoh Group had worldwide sales of 1,682 billion yen (approx. 15.1 billion USD).

For further information, please visit www.ricoh.com

###

© 2021 RICOH COMPANY, LTD. All rights reserved. All referenced product names are the trademarks of their respective companies.