Notice on potential impact of a heap buffer overflow vulnerability in libwebp / libvpx towards RICOH Interactive Whiteboard Controller Type 2 / Controller Type 3Ricoh understands the importance of security and we are committed to managing its products and services with the most advanced security technologies possible for its customers worldwide.
Ricoh is aware of the reported "Heap buffer overflow vulnerability in libwebp / libvpx" (CVE-2023-4863 / 5217) affects RICOH Interactive Whiteboard Controller Type 2 / Controller Type 3.
Ricoh offers measures detailed below.
Heap buffer overflow allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
| Products or Services | Components | Versions |
|---|---|---|
| RICOH Interactive Whiteboard Controller Type 2 / Controller Type 3 | Microsoft Edge | Microsoft Edge Version less than 117.0.2045.47 |
How to check Microsoft Edge browser version:
1. Run Edge browser on RICOH Interactive Whiteboard.
2. Touch the [Settings] icon.
3. Touch [About Microsoft Edge] on the bottom of the window.
Update Microsoft Edge to Ver.117.0.2045.47 or higher (*).
*No action required as it will be updated automatically.
You can check the version of Edge browser by accessing
[Settings] > [About Microsoft Edge] on Edge browser.
Please contact your local Ricoh representative or dealer if you have any queries.
The distribution URL of this page:
https://www.ricoh.com/products/security/vulnerabilities/adv?id=ricoh-prod000080-2023-000003 Please note that any copy or paraphrase of the text of this document that differs in content from the distribution URL link, or omits the URL, is an uncontrolled copy and may lack important information or contain factual errors.
