jvndb-2025-007595
Vulnerability from jvndb
Published
2025-07-01 14:02
Modified
2025-07-01 14:02
Severity ?
4.3 (Medium) - cvssV3_0 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Summary
Multiple vulnerabilities in Web Connection of Konica Minolta MFPs
Details
Multiple MFPs (multifunction printers) provided by Konica Minolta, Inc. contain multiple vulnerabilities listed below. <ul> <li>Cross-site scripting (CWE-79) - CVE-2025-5884</li> <li>Cross-site request forgery (CWE-352) - CVE-2025-5885</li> </ul> Konica Minolta, Inc. reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.
References
JVN https://jvn.jp/en/vu/JVNVU95470660/index.html
CVE https://www.cve.org/CVERecord?id=CVE-2025-5884
CVE https://www.cve.org/CVERecord?id=CVE-2025-5885
Cross-Site Request Forgery(CWE-352) https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html
Cross-site Scripting(CWE-79) https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html
Impacted products
KONICA MINOLTA, INC.bizhub 227 firmware
KONICA MINOLTA, INC.bizhub 287 firmware
KONICA MINOLTA, INC.bizhub 308e firmware
KONICA MINOLTA, INC.bizhub 308 firmware
KONICA MINOLTA, INC.bizhub 367 firmware
KONICA MINOLTA, INC.bizhub 368e firmware
KONICA MINOLTA, INC.bizhub 368 firmware
KONICA MINOLTA, INC.bizhub 4052 firmware
KONICA MINOLTA, INC.bizhub 458e firmware
KONICA MINOLTA, INC.bizhub 458 firmware
KONICA MINOLTA, INC.bizhub 4752 firmware
KONICA MINOLTA, INC.bizhub 558e firmware
KONICA MINOLTA, INC.bizhub 558 firmware
KONICA MINOLTA, INC.bizhub 658e firmware
KONICA MINOLTA, INC.bizhub 758 firmware
KONICA MINOLTA, INC.bizhub 808 firmware
KONICA MINOLTA, INC.bizhub 958 firmware
KONICA MINOLTA, INC.bizhub C227 firmware
KONICA MINOLTA, INC.bizhub C258 firmware
KONICA MINOLTA, INC.bizhub C287 firmware
KONICA MINOLTA, INC.bizhub C308 firmware
KONICA MINOLTA, INC.bizhub C3351 firmware
KONICA MINOLTA, INC.bizhub C368 firmware
KONICA MINOLTA, INC.bizhub C3851FS firmware
KONICA MINOLTA, INC.bizhub C3851 firmware
KONICA MINOLTA, INC.bizhub C458 firmware
KONICA MINOLTA, INC.bizhub C558 firmware
KONICA MINOLTA, INC.bizhub C658 firmware
KONICA MINOLTA, INC.bizhub C659 firmware
KONICA MINOLTA, INC.bizhub C759 firmware
Show details on JVN DB website

To clipboard 

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-007595.html",
  "dc:date": "2025-07-01T14:02+09:00",
  "dcterms:issued": "2025-07-01T14:02+09:00",
  "dcterms:modified": "2025-07-01T14:02+09:00",
  "description": "Multiple MFPs (multifunction printers) provided by Konica Minolta, Inc. contain multiple vulnerabilities listed below.\r\n\u003cul\u003e\r\n\u003cli\u003eCross-site scripting (CWE-79) - CVE-2025-5884\u003c/li\u003e\r\n\u003cli\u003eCross-site request forgery (CWE-352) - CVE-2025-5885\u003c/li\u003e\r\n\u003c/ul\u003e\r\n\r\nKonica Minolta, Inc. reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN.",
  "link": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-007595.html",
  "sec:cpe": [
    {
      "#text": "cpe:/o:konicaminolta:bizhub_227_firmware",
      "@product": "bizhub 227 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_287_firmware",
      "@product": "bizhub 287 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_308e_firmware",
      "@product": "bizhub 308e firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_308_firmware",
      "@product": "bizhub 308 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_367_firmware",
      "@product": "bizhub 367 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_368e_firmware",
      "@product": "bizhub 368e firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_368_firmware",
      "@product": "bizhub 368 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_4052_firmware",
      "@product": "bizhub 4052 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_458e_firmware",
      "@product": "bizhub 458e firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_458_firmware",
      "@product": "bizhub 458 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_4752_firmware",
      "@product": "bizhub 4752 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_558e_firmware",
      "@product": "bizhub 558e firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_558_firmware",
      "@product": "bizhub 558 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_658e_firmware",
      "@product": "bizhub 658e firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_758_firmware",
      "@product": "bizhub 758 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_808_firmware",
      "@product": "bizhub 808 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_958_firmware",
      "@product": "bizhub 958 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c227_firmware",
      "@product": "bizhub C227 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c258_firmware",
      "@product": "bizhub C258 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c287_firmware",
      "@product": "bizhub C287 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c308_firmware",
      "@product": "bizhub C308 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c3351_firmware",
      "@product": "bizhub C3351 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c368_firmware",
      "@product": "bizhub C368 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c3851fs_firmware",
      "@product": "bizhub C3851FS firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c3851_firmware",
      "@product": "bizhub C3851 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c458_firmware",
      "@product": "bizhub C458 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c558_firmware",
      "@product": "bizhub C558 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c658_firmware",
      "@product": "bizhub C658 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c659_firmware",
      "@product": "bizhub C659 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/o:konicaminolta:bizhub_c759_firmware",
      "@product": "bizhub C759 firmware",
      "@vendor": "KONICA MINOLTA, INC.",
      "@version": "2.2"
    }
  ],
  "sec:cvss": {
    "@score": "4.3",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
    "@version": "3.0"
  },
  "sec:identifier": "JVNDB-2025-007595",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/vu/JVNVU95470660/index.html",
      "@id": "JVNVU#95470660",
      "@source": "JVN"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2025-5884",
      "@id": "CVE-2025-5884",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2025-5885",
      "@id": "CVE-2025-5885",
      "@source": "CVE"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-352",
      "@title": "Cross-Site Request Forgery(CWE-352)"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-79",
      "@title": "Cross-site Scripting(CWE-79)"
    }
  ],
  "title": "Multiple vulnerabilities in Web Connection of Konica Minolta MFPs"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.