CVE-2022-29586

Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox Escape. An attacker must attach a keyboard to a USB port, press F12, and then escape from the kiosk mode.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_226i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_226i:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_227_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_227:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_246i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_246i:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_287_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_287:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_306i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_306i:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_308_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_308:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_308e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_308e:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_367_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_367:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_368_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_368:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_368e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_368e:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_4052_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_4052:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_458_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_458:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_458e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_458e:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_4752_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_4752:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_558_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_558:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_558e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_558e:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_658e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_658e:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_758_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_758:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_808_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_808:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_958_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_958:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c227_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c227:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c250i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c250i:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c258_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c258:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c287_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c287:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c300i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c300i:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c308_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c308:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c3300i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c3300i:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c3320i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c3320i:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c3350i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c3350i:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c3351_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c3351:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c360i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c360i:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c368_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c368:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c3851_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c3851:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c3851fs_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c3851fs:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c4000i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c4000i:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c4050i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c4050i:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c450i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c450i:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c458_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c458:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c550i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c550i:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c558_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c558:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c650i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c650i:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c658_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c658:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c659_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c659:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_c759_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_c759:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND
cpe:2.3:o:konicaminolta:bizhub_pro958_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:konicaminolta:bizhub_pro958:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:59

Type Values Removed Values Added
References () https://sec-consult.com/vulnerability-lab/ - Third Party Advisory () https://sec-consult.com/vulnerability-lab/ - Third Party Advisory
References () https://sec-consult.com/vulnerability-lab/advisory/sandbox-escape-with-root-access-clear-text-passwords-in-konica-minolta-bizhub-mfp-printer-terminals/ - Third Party Advisory () https://sec-consult.com/vulnerability-lab/advisory/sandbox-escape-with-root-access-clear-text-passwords-in-konica-minolta-bizhub-mfp-printer-terminals/ - Third Party Advisory

Information

Published : 2022-05-16 06:15

Updated : 2024-11-21 06:59


NVD link : CVE-2022-29586

Mitre link : CVE-2022-29586

CVE.ORG link : CVE-2022-29586


JSON object : View

Products Affected

konicaminolta

  • bizhub_c3851
  • bizhub_c558
  • bizhub_c4000i
  • bizhub_306i
  • bizhub_558e
  • bizhub_c450i_firmware
  • bizhub_287
  • bizhub_c300i_firmware
  • bizhub_4752_firmware
  • bizhub_c650i_firmware
  • bizhub_c368_firmware
  • bizhub_c759
  • bizhub_308e
  • bizhub_c3320i_firmware
  • bizhub_367_firmware
  • bizhub_c250i
  • bizhub_c287_firmware
  • bizhub_c308
  • bizhub_4752
  • bizhub_306i_firmware
  • bizhub_458_firmware
  • bizhub_c250i_firmware
  • bizhub_c550i_firmware
  • bizhub_368_firmware
  • bizhub_808
  • bizhub_c3350i
  • bizhub_368
  • bizhub_c3300i_firmware
  • bizhub_368e
  • bizhub_c287
  • bizhub_558_firmware
  • bizhub_226i
  • bizhub_c360i_firmware
  • bizhub_658e
  • bizhub_227
  • bizhub_c450i
  • bizhub_c658
  • bizhub_458
  • bizhub_c458
  • bizhub_758_firmware
  • bizhub_pro958
  • bizhub_c3351_firmware
  • bizhub_c659
  • bizhub_4052
  • bizhub_658e_firmware
  • bizhub_246i_firmware
  • bizhub_368e_firmware
  • bizhub_c360i
  • bizhub_958_firmware
  • bizhub_226i_firmware
  • bizhub_c308_firmware
  • bizhub_pro958_firmware
  • bizhub_c550i
  • bizhub_c4050i
  • bizhub_c368
  • bizhub_308_firmware
  • bizhub_308
  • bizhub_c3851fs
  • bizhub_c4050i_firmware
  • bizhub_227_firmware
  • bizhub_808_firmware
  • bizhub_c258_firmware
  • bizhub_c300i
  • bizhub_c3350i_firmware
  • bizhub_c258
  • bizhub_246i
  • bizhub_c3351
  • bizhub_287_firmware
  • bizhub_c227
  • bizhub_558e_firmware
  • bizhub_558
  • bizhub_758
  • bizhub_308e_firmware
  • bizhub_c650i
  • bizhub_c227_firmware
  • bizhub_c458_firmware
  • bizhub_c4000i_firmware
  • bizhub_c658_firmware
  • bizhub_c659_firmware
  • bizhub_367
  • bizhub_c3851fs_firmware
  • bizhub_c759_firmware
  • bizhub_458e
  • bizhub_458e_firmware
  • bizhub_c3851_firmware
  • bizhub_4052_firmware
  • bizhub_c558_firmware
  • bizhub_c3320i
  • bizhub_958
  • bizhub_c3300i