Contact

Vulnerability Submission Form

This webpage is the contact point where we accept reports concerning security problems discovered in the products, services and solutions (hereafter simply referred to as products) provided by PFU Limited (hereafter PFU). Our company's specialized security teams take action based on the content of these reports.

In addition, we may ask the person who reported the information to provide additional information or adjust the date of disclosure as necessary. The status of response will also be reported in a timely manner.

To facilitate the smooth confirmation of the problem you report, when you contact us, please include the information below whenever possible.

The PFU products to be contacted include the Ricoh brand image scanners "fi series", "SP series", "ScanSnap series", and PFU brand products. If it is unknown, refer to the manual attached to the product.

What we would like you to include:

  • Name of the PFU's product
  • The relevant version information
  • The type of the security problem, preferably using the Common Weakness Enumeration (CWE)
  • The possible cause
  • Evidence concerning the security problem (procedure to reproduce the problem, tools needed for that procedure, PoC code, etc.)
  • Scope of the impact (other products, components, vendors, etc.) of the security problem reported
  • Your intentions concerning public disclosure of the security problem reported

In cases where your report needs an attachment file (PoC, evidence, etc.), we will contact you by email to ask about it, so please attach the file when you respond at that time.
Only English and Japanese are supported.

After entering the necessary information in the form below, please push the "Confirm" button. If the submission is properly sent, we will respond by automatically sending a confirmation email containing the content of your submission.

If you specify domains in your email anti-spam measures, please make an entry to accept emails from the "jp.ricoh.com" domain.

If you do not receive the confirmation email from us, it is possible that the email address which you entered was incorrect. Please check the email address entered and then resend the submission.

The personal information collected via this form will only be used for the procedures necessary to reply to and handle the submission.
The subject personal information will be managed using appropriate safety measures, and it will not be disclosed or provided to third parties without the advance permission of the customer.
The content of the submission will be used jointly by the related Ricoh Group departments in order to improve quality.

For information on our handling of personal information, please see:
Handling of Personal Information.

For more information on the vulnerability handling policy, please see:
Product Security.

Are you a vulnerability researcher?
Company
Department
Country
Name
First Name :
Last Name :
email
Product name
Content of the submission concerning the potential vulnerability

Personal information submitted to a Japanese corporation PFU Limited and/or PFU Group companies through this form shall be processed in accordance with our privacy policy. By clicking the "submit" button below, you consent to collection, use, and disclosure of your personal information in accordance PFU privacy policy.