Search Results | AttackerKB

Show filters

Topics 3 Users 9,710

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

3 Total Results

Displaying 1-3 of 3

Attacker Value

Unknown

CVE-2022-29588

Disclosure Date: May 16, 2022 (last updated October 07, 2023)

Konica Minolta bizhub MFP devices before 2022-04-14 use cleartext password storage for the /var/log/nginx/html/ADMINPASS and /etc/shadow files.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-29587

Disclosure Date: May 16, 2022 (last updated October 07, 2023)

Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root (aka superuser) access privileges.

Attack Vector: Physical Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2022-29586

Disclosure Date: May 16, 2022 (last updated October 07, 2023)

Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox Escape. An attacker must attach a keyboard to a USB port, press F12, and then escape from the kiosk mode.

Attack Vector: Physical Privileges: Low User Interaction: None

0