VYPR
Vendor

Konicaminolta

Products
7
CVEs
17
Across products
19
Status
Private

Products

7

Recent CVEs

17
  • CVE-2022-29588HigMay 16, 2022
    risk 0.49cvss 7.5epss 0.02

    Konica Minolta bizhub MFP devices before 2022-04-14 use cleartext password storage for the /var/log/nginx/html/ADMINPASS and /etc/shadow files.

  • CVE-2022-29586HigMay 16, 2022
    risk 0.48cvss 7.4epss 0.00

    Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox Escape. An attacker must attach a keyboard to a USB port, press F12, and then escape from the kiosk mode.

  • CVE-2025-6081MedJul 1, 2025
    risk 0.44cvss 6.8epss 0.00

    Insufficiently Protected Credentials in LDAP in Konica Minolta bizhub 227 Multifunction printers version GCQ-Y3 or earlier allows an attacker can reconfigure the target device to use an external LDAP service controlled by the attacker. If an LDAP password is set on the target…

  • CVE-2021-20872MedJan 4, 2022
    risk 0.44cvss 6.8epss 0.00

    Protection mechanism failure vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, bizhub 750i/650i/550i/450i G00-37 and earlier, bizhub 360i/300i G00-33 and…

  • CVE-2021-20871MedJan 4, 2022
    risk 0.42cvss 6.5epss 0.01

    Exposure of sensitive information to an unauthorized actor vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, bizhub 750i/650i/550i/450i G00-37 and earlier,…

  • CVE-2021-20869MedJan 4, 2022
    risk 0.42cvss 6.5epss 0.01

    Exposure of sensitive information to an unauthorized actor vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, bizhub 750i/650i/550i/450i G00-37 and earlier,…

  • CVE-2021-20870MedJan 4, 2022
    risk 0.30cvss 4.6epss 0.00

    Improper handling of exceptional conditions vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, bizhub 750i/650i/550i/450i G00-37 and earlier, bizhub 360i/300i…

  • CVE-2021-20868MedJan 4, 2022
    risk 0.29cvss 4.5epss 0.00

    Incorrect authorization vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, bizhub 750i/650i/550i/450i G00-37 and earlier, bizhub 360i/300i G00-33 and earlier,…

  • CVE-2025-54777MedAug 29, 2025
    risk 0.28cvss 4.3epss 0.00

    Uncaught exception issue exists in Multiple products in bizhub series. If a malformed file is imported as an S/MIME Email certificate, it may cause a denial-of-service issue that disable the Web Connection feature.

  • CVE-2025-5885MedJun 9, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability has been found in Konica Minolta bizhub up to 20250202 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public…

  • CVE-2022-29587MedMay 16, 2022
    risk 0.26cvss 4.0epss 0.00

    Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root (aka superuser) access privileges.

  • CVE-2025-5884LowJun 9, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability, which was classified as problematic, was found in Konica Minolta bizhub up to 20250202. This affects an unknown part of the component Display MFP Information List. The manipulation of the argument Model Name leads to cross site scripting. It is possible to…

  • CVE-2015-7768Oct 9, 2015
    risk 0.08cvss epss 0.63

    Buffer overflow in Konica Minolta FTP Utility 1.0 allows remote attackers to execute arbitrary code via a long CWD command.

  • CVE-2015-7603Sep 29, 2015
    risk 0.08cvss epss 0.61

    Directory traversal vulnerability in Konica Minolta FTP Utility 1.0 allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in a RETR command.

  • CVE-2015-7767Oct 9, 2015
    risk 0.03cvss epss 0.05

    Buffer overflow in Konica Minolta FTP Utility 1.0 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long USER command.

  • CVE-2020-37069Feb 3, 2026
    risk 0.00cvss epss 0.01

    Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the NLST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code.

  • CVE-2020-37068Feb 3, 2026
    risk 0.00cvss epss 0.01

    Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code.

VYPR — Vulnerability Intelligence