[Japanese] | |
JVNDB-2025-007607 | |
Pass-Back Attack vulnerability in Konica Minorta bizhub series | |
Overview | |
Konica Minorta bizhub series provided by Konica Minolta, Inc. contains the following vulnerability. | |
CVSS Severity (What is CVSS?) | |
CVSS V3 Severity:
Base Metrics 6.8 (Medium) [Other]
| |
Affected Products | |
| |
KONICA MINOLTA, INC. | |
A wide range of products and versions are affected. For more information, refer to "Vendor Status" section below. | |
Impact | |
When an affected device is configured to communicate with an external system (e.g., LDAP server), an administrative user may obtain the credential information of that external system by directing the device to send the credential information in plain text form. | |
Solution | |
[Apply the workarounds] | |
Vendor Information | |
KONICA MINOLTA, INC. | |
CWE (What is CWE?) | |
| |
CVE (What is CVE?) | |
| |
References | |
| |
Revision History | |
|
Date Public | 2025/06/30 |
Date First Published | 2025/07/01 |
Date Last Updated | 2025/07/01 |