Hard-coded Credentials Vulnerability in RICOH Interactive Whiteboard and Controller

Hard-coded Credentials Vulnerability in RICOH Interactive Whiteboard and Controller

CVE-2018-16186 · HIGH Severity

AV:A/AC:L/AU:N/C:C/I:C/A:C

RICOH Interactive Whiteboard D2200 V1.1 to V2.2, D5500 V1.1 to V2.2, D5510 V1.1 to V2.2, the display versions with RICOH Interactive Whiteboard Controller Type1 V1.1 to V2.2 attached (D5520, D6500, D6510, D7500, D8400), and the display versions with RICOH Interactive Whiteboard Controller Type2 V3.0 to V3.1.10137.0 attached (D5520, D6510, D7500, D8400) uses hard-coded credentials, which may allow an attacker on the same network segments to login to the administrators settings screen and change the configuration.

Learn more about our Network Penetration Testing.