Privilege Escalation Vulnerability in ScanSnap Manager by Ricoh
CVE-2025-57797

8.5HIGH

Key Information:

Vendor: Pfu Limited
Status: Scansnap Manager Installers
Vendor: CVE Published:; 27 August 2025

🔔 Create Pfu Limited Vulnerability Alert

What is CVE-2025-57797?

A privilege escalation vulnerability has been identified in the ScanSnap Manager installers, specifically in versions earlier than V6.5L61. This flaw could be exploited by an authenticated local attacker to escalate their privileges and execute arbitrary commands, potentially compromising the integrity of the affected systems.

Affected Version(s)

ScanSnap Manager installers prior to V6.5L61

References

https://www.pfu.ricoh.com/imaging/news/news20230606.html

https://www.pfu.ricoh.com/scansnap/software/sshome/requir...

https://jvn.jp/en/jp/JVN69684540/

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

CVSS V3.0

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 27, 2025
Vulnerability Reserved
Aug 20, 2025