4 matches found
Konica Bizhub Multifunction Printers Insertion of Sensitive Information into Externally-Accessible File or Directory (CVE-2025-8452)
Through the use of eSCL or SNMP protocols, an attacker can retrieve the serial number of a printer. By applying the attack technique described in CVE-2024-51978, the default administrator password can be derived from the obtained serial number. Consequently, if the administrator password has not...
CVE-2024-51978
An unauthenticated attacker who knows the target device's serial number, can generate the default administrator password for the device. An unauthenticated attacker can first discover the target device's serial number via CVE-2024-51977 over HTTP/HTTPS/IPP, or via a PJL request, or via an SNMP...
CVE-2024-51978
creationtimestamp| type| source ---|---|--- 2025-06-25 07:50:13+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19426 2025-06-25 08:54:44+00:00| seen| https://bsky.app/profile/stephenfewer.bsky.social/post/3lsgagbz56s2h 2025-06-25 09:19:15+00:00| seen|...
CVE-2024-51978
CVE-2024-51978 enables an unauthenticated attacker to derive the deviceโs default administrator password by leaking the device serial number. The serial number can be exposed via CVE-2024-51977 (through HTTP, HTTPS, IPP), or via PJL or SNMP requests, allowing remote compromise of Brother and Koni...