CVE-2019-14302

Name: CVE-2019-14302
Creator: NVD / NIST
Published: 2020-01-10T18:15:11.413+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 6.8/10EPSS 0.37%

Last modified Jun 17, 2026

CVE-2019-14302 is a medium-severity vulnerability rated 6.8/10 on the CVSS scale. On Ricoh SP C250DN 1.06 devices, a debug port can be used.. EPSS estimates a 0.37% chance of exploitation in the next 30 days.

Description

On Ricoh SP C250DN 1.06 devices, a debug port can be used.

Metrics

CVSS 3.1

6.8/10

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

0.37%

29.2th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Ricoh	Sp C250sf Firmware	< 1.15
Ricoh	Sp C252sf Firmware	< 1.15
Ricoh	Sp C250dn Firmware	< 1.09
Ricoh	Sp C252dn Firmware	< 1.09
Ricoh	Sp 330sn Firmware	< 1.07
Ricoh	Sp 330sfn Firmware	< 1.07
Ricoh	Sp 330dn Firmware	< 1.07
Ricoh	Sp 3710sf Firmware	< 1.07
Ricoh	Sp 3710dn Firmware	< 1.07
Ricoh	Sp C260dnw Firmware	< 1.12
Ricoh	Sp C260sfnw Firmware	< 1.15
Ricoh	Sp C261dnw Firmware	< 1.13
Ricoh	Sp C261sfnw Firmware	< 1.17
Ricoh	Sp C262sfnw Firmware	< 1.17
Ricoh	Sp C262dnw Firmware	< 1.13
Ricoh	Mp 2014 Firmware	< 1.10
Ricoh	Mp 2014d Firmware	< 1.10
Ricoh	Mp 2014ad Firmware	< 1.10
Ricoh	M 2700 Firmware	< 1.06
Ricoh	M 2701 Firmware	< 1.06
Ricoh	Sp 221s Firmware	< 1.10
Ricoh	Sp 220snw Firmware	< 1.11
Ricoh	Sp 221snw Firmware	< 1.11
Ricoh	Sp 221sf Firmware	< 1.11
Ricoh	Sp 220sfnw Firmware	< 1.12
Ricoh	Sp 221sfnw Firmware	< 1.12
Ricoh	Sp 277snwx Firmware	< 1.12
Ricoh	Sp 277sfnwx Firmware	< 1.12
Ricoh	Sp 221 Firmware	< 1.02
Ricoh	Sp 220nw Firmware	< 1.04
Ricoh	Sp 221nw Firmware	< 1.04
Ricoh	Sp277nwx Firmware	< 1.04
Ricoh	Sp 212snw Firmware	< 1.07
Ricoh	Sp 212sfnw Firmware	< 1.08
Ricoh	Sp 212sfw Firmware	< 1.08
Ricoh	Sp 212sfnw \(China\) Firmware	< 1.08
Ricoh	Sp 212suw Firmware	< 1.07
Ricoh	Sp 213snw Firmware	< 1.07
Ricoh	Sp 213snw \(Taiwan\) Firmware	< 1.05
Ricoh	Sp 213suw Firmware	< 1.07
Ricoh	Sp 213sfnw Firmware	< 1.07
Ricoh	Sp 213sfw Firmware	< 1.07
Ricoh	Sp 213sfnw \(Taiwan\) Firmware	< 1.06
Ricoh	Sp 212nw Firmware	< 1.06
Ricoh	Sp 213nw Firmware	< 1.06
Ricoh	Sp 213nw \(Taiwan\) Firmware	< 1.04
Ricoh	Sp 212w Firmware	< 1.06
Ricoh	Sp 213w Firmware	< 1.06
Ricoh	Sp 210su \(China\) Firmware	< 1.06
Ricoh	Sp 210su Q \(China\) Firmware	< 1.06

Showing 50 of 61 affected configurations. See NVD for the full list.

References

http://jvn.jp/en/jp/JVN52962201/index.htmlThird Party Advisory, VDB Entry
https://www.ricoh.com/info/2019/0823_1/Vendor Advisory
http://jvn.jp/en/jp/JVN52962201/index.htmlThird Party Advisory, VDB Entry
https://www.ricoh.com/info/2019/0823_1/Vendor Advisory

Timeline

Published: Jan 10, 2020
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-14302?

On Ricoh SP C250DN 1.06 devices, a debug port can be used.

How severe is CVE-2019-14302?

CVE-2019-14302 has a CVSS score of 6.8/10 (MEDIUM severity). The EPSS model estimates a 0.37% probability of exploitation in the next 30 days.

How do I fix CVE-2019-14302?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-14302?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST