CVE-2026-50100
Received Received - Intake
Privilege Escalation in Ricoh and Konica Minolta Printer Drivers

Publication date: 2026-06-15

Last updated on: 2026-06-15

Assigner: JPCERT/CC

Description
Multiple printer drivers provided by Ricoh Company, Ltd. and KONICA MINOLTA JAPAN, INC. contain a privilege escalation vulnerability. If this vulnerability is exploited, an attacker who can log in to a computer running an affected printer driver could elevate privileges by using a specially crafted driver.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-15
Last Modified
2026-06-15
Generated
2026-06-15
AI Q&A
2026-06-15
EPSS Evaluated
N/A
NVD
CVE-2026-50100
EUVD
EUVD-2026-36701
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
ricoh printer_driver to 1.5.0.0 (exc)
konicaminolta printer_driver to 1.3.0.0 (exc)
konicaminolta pc_fax_driver to 13.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-427 The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-50100 is a privilege escalation vulnerability found in multiple printer drivers provided by Ricoh Company, Ltd. and KONICA MINOLTA JAPAN, INC. An attacker who can log in to a computer running an affected printer driver can exploit this vulnerability by using a specially crafted driver to elevate their privileges on the system.

The vulnerability involves DLL loading issues in the printer drivers, which can allow execution of arbitrary code with system administrator privileges if exploited.

Impact Analysis

If exploited, this vulnerability allows an attacker with login access to a vulnerable system to escalate their privileges to system administrator level. This means the attacker could execute arbitrary code with high-level permissions, potentially compromising the entire system.

Such an attack could lead to unauthorized control over the affected computer, data theft, system disruption, or further attacks within the network.

Detection Guidance

To detect this vulnerability on your system, you should check the versions of the affected printer drivers installed. Specifically, for KONICA MINOLTA devices, verify if the installed driver versions are at or below the vulnerable versions: RPCS driver Ver1.5.0.0 or lower, PS driver Ver1.3.0.0 or lower, and PC FAX driver Ver13.0 or lower.

On Windows, you can check the driver version by going to Settings > Printers & Scanners, selecting the printer, and viewing the print queue or driver properties to find version information.

No specific command-line commands are provided in the available resources to detect this vulnerability.

Mitigation Strategies

The immediate and recommended mitigation step is to update the affected printer drivers to the latest versions provided by Ricoh and KONICA MINOLTA JAPAN.

For KONICA MINOLTA devices, update the RPCS, PS, and PC FAX drivers to versions above the vulnerable thresholds (above RPCS Ver1.5.0.0, PS Ver1.3.0.0, and PC FAX Ver13.0).

Driver updates can be obtained from the official KONICA MINOLTA download page or Ricoh's official support channels.

If you have questions or need assistance, contact the device maintenance service provider.

Compliance Impact

The provided information does not specify how the privilege escalation vulnerability in Ricoh and KONICA MINOLTA JAPAN printer drivers directly affects compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-50100. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart