Lucene search
K

Konica Bizhub Multifunction Printers Cross-site Request Forgery (CVE-2025-5885)

🗓️ 19 Dec 2025 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 3 Views

Cross site request forgery in Konica Bizhub Web Connection (CVE-2025-5885) detected.

Related
Refs
Code
ReporterTitlePublishedViews
Family
CNNVD
Konica Minolta bizhub 安全漏洞
9 Jun 202500:00
cnnvd
CVE
CVE-2025-5885
9 Jun 202515:00
cve
Cvelist
CVE-2025-5885 Konica Minolta bizhub cross-site request forgery
9 Jun 202515:00
cvelist
EUVD
EUVD-2025-17471
3 Oct 202520:07
euvd
Japan Vulnerability Notes
Multiple vulnerabilities in Web Connection of Konica Minolta MFPs
1 Jul 202505:02
jvn
NVD
CVE-2025-5885
9 Jun 202515:15
nvd
OSV
CVE-2025-5885
9 Jun 202515:15
osv
Positive Technologies
PT-2025-24443
9 Jun 202500:00
ptsecurity
RedhatCVE
CVE-2025-5885
11 Jun 202515:21
redhatcve
Vulnrichment
CVE-2025-5885 Konica Minolta bizhub cross-site request forgery
9 Jun 202515:00
vulnrichment
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(504861);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/02/20");

  script_cve_id("CVE-2025-5885");

  script_name(english:"Konica Bizhub Multifunction Printers Cross-site Request Forgery (CVE-2025-5885)");

  script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"Cross-site request forgery vulnerability (CWE-352, CWE-862) was found in the Web Connection.");
  script_set_attribute(attribute:"see_also", value:"https://nvd.nist.gov/vuln/detail/CVE-2025-5885");
  # https://www.konicaminolta.com/global-en/security/advisory/pdf/km-2025-0002.pdf
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?b3fc6c16");
  script_set_attribute(attribute:"solution", value:
"Refer to the vendor advisory.");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N");
  script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:P");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-5885");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(352, 862);

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/09/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/12/19");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c759_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c659_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c658_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c558_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c458_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c368_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c308_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c258_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c287_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c227_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c3851_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c3851fs_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_c3351_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_958_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_808_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_758_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_658e_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_558e_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_458e_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_368e_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_308e_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_558_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_458_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_368_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_308_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_367_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_287_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_227_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_4752_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:konicaminolta:bizhub_4052_firmware");
  script_set_attribute(attribute:"generated_plugin", value:"former");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Tenable.ot");

  script_copyright(english:"This script is Copyright (C) 2025-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("tenable_ot_api_integration.nasl");
  script_require_keys("Tenable.ot/Konica");

  exit(0);
}

include('tenable_ot_cve_funcs.inc');

get_kb_item_or_exit('Tenable.ot/Konica');

var asset = tenable_ot::assets::get(vendor:'Konica');

var vuln_cpes = {
    "cpe:/o:konicaminolta:bizhub_c759_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c659_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c658_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c558_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c458_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c368_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c308_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c258_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c287_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c227_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c3851_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c3851fs_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_c3351_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_958_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_808_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_758_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_658e_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_558e_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_458e_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_368e_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_308e_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_558_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_458_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_368_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_308_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_367_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_287_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_227_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_4752_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"},
    "cpe:/o:konicaminolta:bizhub_4052_firmware" :
        {"family" : "Bizhub", "versionEndIncluding" : "g00-ye"}
};

tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_WARNING);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

20 Feb 2026 00:00Current
4.9Medium risk
Vulners AI Score4.9
CVSS 3.14.3
CVSS 25
CVSS 45.3
CVSS 34.3
EPSS0.00219
SSVC
3