Notice on potential impact of a heap buffer overflow vulnerability in libwebp / libvpx towards RICOH Interactive Whiteboard Controller OP-10/OP-5/OP-5 Type2Ricoh understands the importance of security and we are committed to managing its products and services with the most advanced security technologies possible for its customers worldwide.
Ricoh is aware of the reported "Heap buffer overflow vulnerability in libwebp / libvpx" (CVE-2023-4863/5217) affects RICOH Interactive Whiteboard Controller OP-10/OP-5/OP-5 Type2.
Ricoh offers measures detailed below.
Heap buffer overflow allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
| Products or Services | Components | Versions |
|---|---|---|
| Ricoh Interactive Whiteboard Controller OP-10/OP-5/OP-5 Type2 | Microsoft Edge | before version 117.0.2045.47 |
How to check Microsoft Edge browser version:
1. Run Edge browser on RICOH Interactive Whiteboard.
2. Touch the [Settings] icon.
3. Touch [About Microsoft Edge] on the bottom of the window.
Update Microsoft Edge to Ver.117.0.2045.47 or higher by following steps:
1. Go to [About Microsoft Edge] under [Settings] to check Microsoft Edge browser version.
2. If the latest version is available, [About Microsoft Edge] page shows “An update is available. Select Download and install to proceed”.
3. Touch [Download and install] to start downloading.
4. Once downloading is completed, you will be asked to restart Microsoft Edge browser.
Touch [Restart] to restart Microsoft Edge browser and complete updating.
Please contact your local Ricoh representative or dealer if you have any queries.
The distribution URL of this page:
https://www.ricoh.com/products/security/vulnerabilities/adv?id=ricoh-prod000079-2023-000003 Please note that any copy or paraphrase of the text of this document that differs in content from the distribution URL link, or omits the URL, is an uncontrolled copy and may lack important information or contain factual errors.
