Konicaminolta: >> Bizhub Pro958 Firmware Security Vulnerabilities
Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root (aka superuser) access privileges.
CVSS Score
4.0
EPSS Score
0.001
Published
2022-05-16
Konica Minolta bizhub MFP devices before 2022-04-14 use cleartext password storage for the /var/log/nginx/html/ADMINPASS and /etc/shadow files.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-05-16
Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox Escape. An attacker must attach a keyboard to a USB port, press F12, and then escape from the kiosk mode.
CVSS Score
7.4
EPSS Score
0.001
Published
2022-05-16