CVE-2022-29586 - Vulnerability Details

Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox Escape. An attacker must attach a keyboard to a USB port, press F12, and then escape from the kiosk mode.

No CVSS v4.0

Attack Vector Physical

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.00047.

Key SSVC decision points have not yet been added.

Vendors	Products
Konicaminolta Subscribe	Bizhub 226i Subscribe Bizhub 226i Firmware Subscribe Bizhub 227 Subscribe Bizhub 227 Firmware Subscribe Bizhub 246i Subscribe Bizhub 246i Firmware Subscribe Bizhub 287 Subscribe Bizhub 287 Firmware Subscribe Bizhub 306i Subscribe Bizhub 306i Firmware Subscribe Bizhub 308 Subscribe Bizhub 308 Firmware Subscribe Bizhub 308e Subscribe Bizhub 308e Firmware Subscribe Bizhub 367 Subscribe Bizhub 367 Firmware Subscribe Bizhub 368 Subscribe Bizhub 368 Firmware Subscribe Bizhub 368e Subscribe Bizhub 368e Firmware Subscribe Bizhub 4052 Subscribe Bizhub 4052 Firmware Subscribe Bizhub 458 Subscribe Bizhub 458 Firmware Subscribe Bizhub 458e Subscribe Bizhub 458e Firmware Subscribe Bizhub 4752 Subscribe Bizhub 4752 Firmware Subscribe Bizhub 558 Subscribe Bizhub 558 Firmware Subscribe Bizhub 558e Subscribe Bizhub 558e Firmware Subscribe Bizhub 658e Subscribe Bizhub 658e Firmware Subscribe Bizhub 758 Subscribe Bizhub 758 Firmware Subscribe Bizhub 808 Subscribe Bizhub 808 Firmware Subscribe Bizhub 958 Subscribe Bizhub 958 Firmware Subscribe Bizhub C227 Subscribe Bizhub C227 Firmware Subscribe Bizhub C250i Subscribe Bizhub C250i Firmware Subscribe Bizhub C258 Subscribe Bizhub C258 Firmware Subscribe Bizhub C287 Subscribe Bizhub C287 Firmware Subscribe Bizhub C300i Subscribe Bizhub C300i Firmware Subscribe Bizhub C308 Subscribe Bizhub C308 Firmware Subscribe Bizhub C3300i Subscribe Bizhub C3300i Firmware Subscribe Bizhub C3320i Subscribe Bizhub C3320i Firmware Subscribe Bizhub C3350i Subscribe Bizhub C3350i Firmware Subscribe Bizhub C3351 Subscribe Bizhub C3351 Firmware Subscribe Bizhub C360i Subscribe Bizhub C360i Firmware Subscribe Bizhub C368 Subscribe Bizhub C368 Firmware Subscribe Bizhub C3851 Subscribe Bizhub C3851 Firmware Subscribe Bizhub C3851fs Subscribe Bizhub C3851fs Firmware Subscribe Bizhub C4000i Subscribe Bizhub C4000i Firmware Subscribe Bizhub C4050i Subscribe Bizhub C4050i Firmware Subscribe Bizhub C450i Subscribe Bizhub C450i Firmware Subscribe Bizhub C458 Subscribe Bizhub C458 Firmware Subscribe Bizhub C550i Subscribe Bizhub C550i Firmware Subscribe Bizhub C558 Subscribe Bizhub C558 Firmware Subscribe Bizhub C650i Subscribe Bizhub C650i Firmware Subscribe Bizhub C658 Subscribe Bizhub C658 Firmware Subscribe Bizhub C659 Subscribe Bizhub C659 Firmware Subscribe Bizhub C759 Subscribe Bizhub C759 Firmware Subscribe Bizhub Pro958 Subscribe Bizhub Pro958 Firmware Subscribe

Configuration 1 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_226i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_226i:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_227_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_227:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_246i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_246i:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_287_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_287:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_306i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_306i:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_308_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_308:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_308e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_308e:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_367_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_367:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_368_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_368:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_368e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_368e:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_4052_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_4052:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_458_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_458:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_458e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_458e:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_4752_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_4752:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_558_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_558:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_558e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_558e:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_658e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_658e:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_758_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_758:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_808_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_808:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_958_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_958:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c227_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c227:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c250i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c250i:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c258_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c258:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c287_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c287:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c300i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c300i:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c308_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c308:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c3300i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c3300i:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c3320i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c3320i:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c3350i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c3350i:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c3351_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c3351:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c360i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c360i:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c368_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c368:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c3851_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c3851:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c3851fs_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c3851fs:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c4000i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c4000i:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c4050i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c4050i:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c450i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c450i:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c458_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c458:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c550i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c550i:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c558_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c558:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c650i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c650i:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c658_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c658:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c659_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c659:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_c759_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_c759:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:konicaminolta:bizhub_pro958_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:konicaminolta:bizhub_pro958:-:*:*:*:*:*:*:*

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2022-33918	Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox Escape. An attacker must attach a keyboard to a USB port, press F12, and then escape from the kiosk mode.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://sec-consult.com/vulnerability-lab/
https://sec-consult.com/vulnerability-lab/advisory/sandbox-escape-with-root-access-clear-text-passwords-in-konica-minolta-bizhub-mfp-printer-terminals/

History

No history.

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-05-16T05:35:52

Updated: 2024-08-03T06:26:06.552Z

Reserved: 2022-04-22T00:00:00

Link: CVE-2022-29586

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-05-16T06:15:07.740

Modified: 2024-11-21T06:59:21.540

Link: CVE-2022-29586

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

NVD-CWE-noinfo

Metrics

Attack Vector Physical

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Projects

Metrics

Attack Vector Physical

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object