Lucene search

Bizhub 367 Firmware Security Vulnerabilities

cve

CVE-2022-29586

Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox Escape. An attacker must attach a keyboard to a USB port, press F12, and then escape from the kiosk mode.

7.4CVSS

7.3AI Score

0.0004EPSS

2022-05-16 06:15 AM

cve

CVE-2022-29587

Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root (aka superuser) access privileges.

4CVSS

4.6AI Score

0.0005EPSS

2022-05-16 06:15 AM

cve

CVE-2022-29588

Konica Minolta bizhub MFP devices before 2022-04-14 use cleartext password storage for the /var/log/nginx/html/ADMINPASS and /etc/shadow files.

7.5CVSS

7.7AI Score

0.002EPSS

2022-05-16 06:15 AM