cvedb.io
CVE-2018-16187
MEDIUM · CVSS 5.9
EPSS exploitation probability: 0%
Published 2019-01-09T23:29:04.183 · Last modified 2026-06-17T01:43:51.230

Summary

The RICOH Interactive Whiteboard D2200 V1.3 to V2.2, D5500 V1.3 to V2.2, D5510 V1.3 to V2.2, the display versions with RICOH Interactive Whiteboard Controller Type1 V1.3 to V2.2 attached (D5520, D6500, D6510, D7500, D8400), and the display versions with RICOH Interactive Whiteboard Controller Type2 V3.0 to V3.1.10137.0 attached (D5520, D6510, D7500, D8400) does not verify its server certificates, which allows man-in-the-middle attackers to eversdrop on encrypted communication.

Affected products

ricoh — d2200_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when ricoh ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.