Vulnerability-Lookup - Search a vulnerability

Search criteria

Vendor

Product

Assigner

Sources

Sort by

Order

1 vulnerability found for (multiple product) by Konica Minolta Business Solutions Japan Co., Ltd.

JVNDB-2021-006146

Vulnerability from jvndb - Published: 2021-12-28 11:51 - Updated:2021-12-28 11:51

Severity ?

6.4 (Medium) - cvssV3_0 - CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

Multiple vulnerabilities in KONICA MINOLTA MFPs and printing systems

Details

Multi-function printers (MFP) and printing systems provided by KONICA MINOLTA, INC. contain multiple vulnerabilities listed below. * Incorrect authorization (CWE-863) - CVE-2021-20868 * Exposure of sensitive information to an unauthorized actor (CWE-200) - CVE-2021-20869 * Improper handling of exceptional conditions (CWE-755) - CVE-2021-20870 * Exposure of sensitive information to an unauthorized actor (CWE-200) - CVE-2021-20871 * Protection mechanism failure (CWE-693) - CVE-2021-20872 KONICA MINOLTA, INC. reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.

References

Type

URL

	JVN	https://jvn.jp/en/vu/JVNVU95192472/index.html
	CVE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20868
	CVE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20869
	CVE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20870
	CVE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20871
	CVE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20872
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-20868
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-20869
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-20870
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-20871
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-20872
	Information Exposure(CWE-200)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html
	Protection Mechanism Failure(CWE-693)	https://cwe.mitre.org/data/definitions/693.html
	Improper Handling of Exceptional Conditions(CWE-755)	https://cwe.mitre.org/data/definitions/755.html
	Incorrect Authorization(CWE-863)	https://cwe.mitre.org/data/definitions/863.html

Impacted products

Vendor

Product

Konica Minolta Business Solutions Japan Co., Ltd.

(multiple product)

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2021/JVNDB-2021-006146.html",
  "dc:date": "2021-12-28T11:51+09:00",
  "dcterms:issued": "2021-12-28T11:51+09:00",
  "dcterms:modified": "2021-12-28T11:51+09:00",
  "description": "Multi-function printers (MFP) and printing systems provided by KONICA MINOLTA, INC. contain multiple vulnerabilities listed below.\r\n\r\n* Incorrect authorization (CWE-863) - CVE-2021-20868\r\n* Exposure of sensitive information to an unauthorized actor (CWE-200) - CVE-2021-20869\r\n* Improper handling of exceptional conditions (CWE-755) - CVE-2021-20870\r\n* Exposure of sensitive information to an unauthorized actor (CWE-200) - CVE-2021-20871\r\n* Protection mechanism failure (CWE-693) - CVE-2021-20872\r\n\r\nKONICA MINOLTA, INC. reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.",
  "link": "https://jvndb.jvn.jp/en/contents/2021/JVNDB-2021-006146.html",
  "sec:cpe": {
    "#text": "cpe:/a:konicaminolta:multiple_product",
    "@product": "(multiple product)",
    "@vendor": "Konica Minolta Business Solutions Japan Co., Ltd.",
    "@version": "2.2"
  },
  "sec:cvss": [
    {
      "@score": "4.6",
      "@severity": "Medium",
      "@type": "Base",
      "@vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
      "@version": "2.0"
    },
    {
      "@score": "6.4",
      "@severity": "Medium",
      "@type": "Base",
      "@vector": "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "@version": "3.0"
    }
  ],
  "sec:identifier": "JVNDB-2021-006146",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/vu/JVNVU95192472/index.html",
      "@id": "JVNVU#95192472",
      "@source": "JVN"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20868",
      "@id": "CVE-2021-20868",
      "@source": "CVE"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20869",
      "@id": "CVE-2021-20869",
      "@source": "CVE"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20870",
      "@id": "CVE-2021-20870",
      "@source": "CVE"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20871",
      "@id": "CVE-2021-20871",
      "@source": "CVE"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20872",
      "@id": "CVE-2021-20872",
      "@source": "CVE"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2021-20868",
      "@id": "CVE-2021-20868",
      "@source": "NVD"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2021-20869",
      "@id": "CVE-2021-20869",
      "@source": "NVD"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2021-20870",
      "@id": "CVE-2021-20870",
      "@source": "NVD"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2021-20871",
      "@id": "CVE-2021-20871",
      "@source": "NVD"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2021-20872",
      "@id": "CVE-2021-20872",
      "@source": "NVD"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-200",
      "@title": "Information Exposure(CWE-200)"
    },
    {
      "#text": "https://cwe.mitre.org/data/definitions/693.html",
      "@id": "CWE-693",
      "@title": "Protection Mechanism Failure(CWE-693)"
    },
    {
      "#text": "https://cwe.mitre.org/data/definitions/755.html",
      "@id": "CWE-755",
      "@title": "Improper Handling of Exceptional Conditions(CWE-755)"
    },
    {
      "#text": "https://cwe.mitre.org/data/definitions/863.html",
      "@id": "CWE-863",
      "@title": "Incorrect Authorization(CWE-863)"
    }
  ],
  "title": "Multiple vulnerabilities in KONICA MINOLTA MFPs and printing systems"
}