Prof. Dr. Dominik Merli

**Name of the Vulnerable Software and Affected Versions** KONICA MINOLTA bizhub series versions G00-35 and earlier KONICA MINOLTA bizhub series versions G00-B6 and earlier KONICA MINOLTA bizhub series versions G00-37 and earlier KONICA MINOLTA bizhub series versions G00-33 and earlier KONICA MINOLTA bizhub series versions G00-19 and earlier KONICA MINOLTA bizhub series versions GC7-X8 and earlier KONICA MINOLTA bizhub series versions GC9-X4 and earlier KONICA MINOLTA bizhub series versions GDQ-M0 and earlier KONICA MINOLTA bizhub series versions GDQ-M1 and earlier KONICA MINOLTA bizhub series versions GR1-M0 and earlier KONICA MINOLTA bizhub series versions G00-22 and earlier **Description** The issue allows an attacker on the adjacent network to obtain user credentials if external server authentication is enabled via a specific SOAP message sent by an administrative user. **Recommendations** For KONICA MINOLTA bizhub series versions G00-35 and earlier, consider disabling external server authentication until a patch is available. For KONICA MINOLTA bizhub series versions G00-B6 and earlier, restrict access to administrative users to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions G00-37 and earlier, avoid using the SOAP message sent by an administrative user until the issue is resolved. For KONICA MINOLTA bizhub series versions G00-33 and earlier, consider implementing additional authentication measures to prevent unauthorized access. For KONICA MINOLTA bizhub series versions G00-19 and earlier, restrict access to the external server authentication feature to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions GC7-X8 and earlier, consider disabling the vulnerable SOAP message until a patch is available. For KONICA MINOLTA bizhub series versions GC9-X4 and earlier, restrict access to administrative users to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions GDQ-M0 and earlier, avoid using the external server authentication feature until the issue is resolved. For KONICA MINOLTA bizhub series versions GDQ-M1 and earlier, consider implementing additional authentication measures to prevent unauthorized access. For KONICA MINOLTA bizhub series versions GR1-M0 and earlier, restrict access to the vulnerable SOAP message to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions G00-22 and earlier, consider disabling external server authentication until a patch is available.

**Name of the Vulnerable Software and Affected Versions** KONICA MINOLTA bizhub series versions G00-35 and earlier KONICA MINOLTA bizhub series versions G00-B6 and earlier KONICA MINOLTA bizhub series versions G00-37 and earlier KONICA MINOLTA bizhub series versions G00-33 and earlier KONICA MINOLTA bizhub series versions G00-19 and earlier KONICA MINOLTA bizhub series versions GC7-X8 and earlier KONICA MINOLTA bizhub series versions GC9-X4 and earlier KONICA MINOLTA bizhub series versions GDQ-M0 and earlier KONICA MINOLTA bizhub series versions GDQ-M1 and earlier KONICA MINOLTA bizhub series versions GR1-M0 and earlier KONICA MINOLTA bizhub series versions G00-22 and earlier **Description** The issue allows an attacker on the adjacent network to obtain some of user credentials if LDAP server authentication is enabled via a specific SOAP message. **Recommendations** For KONICA MINOLTA bizhub series versions G00-35 and earlier, consider disabling LDAP server authentication until a patch is available. For KONICA MINOLTA bizhub series versions G00-B6 and earlier, restrict access to the SOAP message endpoint to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions G00-37 and earlier, avoid using the SOAP message endpoint until the issue is resolved. For KONICA MINOLTA bizhub series versions G00-33 and earlier, consider implementing additional authentication measures to prevent unauthorized access. For KONICA MINOLTA bizhub series versions G00-19 and earlier, restrict access to the LDAP server authentication endpoint to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions GC7-X8 and earlier, consider disabling the SOAP message endpoint until a patch is available. For KONICA MINOLTA bizhub series versions GC9-X4 and earlier, restrict access to the LDAP server authentication endpoint to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions GDQ-M0 and earlier, avoid using the SOAP message endpoint until the issue is resolved. For KONICA MINOLTA bizhub series versions GDQ-M1 and earlier, consider implementing additional authentication measures to prevent unauthorized access. For KONICA MINOLTA bizhub series versions GR1-M0 and earlier, restrict access to the SOAP message endpoint to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions G00-22 and earlier, consider disabling LDAP server authentication until a patch is available.

**Name of the Vulnerable Software and Affected Versions** KONICA MINOLTA bizhub series versions G00-35 and earlier KONICA MINOLTA bizhub series versions G00-B6 and earlier KONICA MINOLTA bizhub series versions G00-37 and earlier KONICA MINOLTA bizhub series versions G00-33 and earlier KONICA MINOLTA bizhub series versions G00-19 and earlier KONICA MINOLTA bizhub series versions GC7-X8 and earlier KONICA MINOLTA bizhub series versions GC9-X4 and earlier KONICA MINOLTA bizhub series versions GDQ-M0 and earlier KONICA MINOLTA bizhub series versions GDQ-M1 and earlier KONICA MINOLTA bizhub series versions GR1-M0 and earlier KONICA MINOLTA bizhub series versions G00-22 and earlier **Description** The issue is related to improper handling of exceptional conditions, allowing a physical attacker to obtain unsent scanned image data when scanned data transmission is stopped due to a network error by ejecting a HDD before the scan job times out. **Recommendations** For KONICA MINOLTA bizhub series versions G00-35 and earlier, consider disabling the scan job functionality until a patch is available. For KONICA MINOLTA bizhub series versions G00-B6 and earlier, restrict access to the HDD to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions G00-37 and earlier, avoid using the scan data transmission feature until the issue is resolved. For KONICA MINOLTA bizhub series versions G00-33 and earlier, consider implementing additional security measures to protect against physical attacks. For KONICA MINOLTA bizhub series versions G00-19 and earlier, restrict access to the scan job functionality to authorized personnel only. For KONICA MINOLTA bizhub series versions GC7-X8 and earlier, consider updating the firmware to a version that addresses the issue. For KONICA MINOLTA bizhub series versions GC9-X4 and earlier, disable the HDD ejection feature until a patch is available. For KONICA MINOLTA bizhub series versions GDQ-M0 and earlier, restrict access to the scan data transmission feature until the issue is resolved. For KONICA MINOLTA bizhub series versions GDQ-M1 and earlier, consider implementing additional security measures to protect against physical attacks. For KONICA MINOLTA bizhub series versions GR1-M0 and earlier, avoid using the scan job functionality until the issue is resolved. For KONICA MINOLTA bizhub series versions G00-22 and earlier, consider disabling the scan data transmission feature until a patch is available.

**Name of the Vulnerable Software and Affected Versions** KONICA MINOLTA bizhub series versions G00-35 and earlier KONICA MINOLTA bizhub series versions G00-B6 and earlier KONICA MINOLTA bizhub series versions G00-37 and earlier KONICA MINOLTA bizhub series versions G00-33 and earlier KONICA MINOLTA bizhub series versions G00-19 and earlier KONICA MINOLTA bizhub series versions GC7-X8 and earlier KONICA MINOLTA bizhub series versions GC9-X4 and earlier KONICA MINOLTA bizhub series versions GDQ-M0 and earlier KONICA MINOLTA bizhub series versions GDQ-M1 and earlier KONICA MINOLTA bizhub series versions GR1-M0 and earlier KONICA MINOLTA bizhub series versions G00-22 and earlier **Description** The issue allows an attacker on the adjacent network to obtain credentials if destination information, including credentials, is registered in the address book via a specific SOAP message. **Recommendations** For KONICA MINOLTA bizhub series versions G00-35 and earlier, consider disabling the registration of destination information including credentials in the address book until a patch is available. For KONICA MINOLTA bizhub series versions G00-B6 and earlier, restrict access to the address book to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions G00-37 and earlier, avoid using the specific SOAP message that allows an attacker to obtain credentials. For KONICA MINOLTA bizhub series versions G00-33 and earlier, consider implementing additional security measures to protect against adjacent network attacks. For KONICA MINOLTA bizhub series versions G00-19 and earlier, restrict access to the address book and consider disabling the registration of destination information including credentials. For KONICA MINOLTA bizhub series versions GC7-X8 and earlier, consider updating the SOAP message handling to prevent credential exposure. For KONICA MINOLTA bizhub series versions GC9-X4 and earlier, restrict access to the address book and consider implementing additional security measures. For KONICA MINOLTA bizhub series versions GDQ-M0 and earlier, consider disabling the registration of destination information including credentials in the address book. For KONICA MINOLTA bizhub series versions GDQ-M1 and earlier, restrict access to the address book to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions GR1-M0 and earlier, consider implementing additional security measures to protect against adjacent network attacks. For KONICA MINOLTA bizhub series versions G00-22 and earlier, consider updating the SOAP message handling to prevent credential exposure.

**Name of the Vulnerable Software and Affected Versions** KONICA MINOLTA bizhub series versions G00-35 and earlier KONICA MINOLTA bizhub series versions G00-B6 and earlier KONICA MINOLTA bizhub series versions G00-37 and earlier KONICA MINOLTA bizhub series versions G00-33 and earlier KONICA MINOLTA bizhub series versions G00-19 and earlier KONICA MINOLTA bizhub series versions GC7-X8 and earlier KONICA MINOLTA bizhub series versions GC9-X4 and earlier KONICA MINOLTA bizhub series versions GDQ-M0 and earlier KONICA MINOLTA bizhub series versions GDQ-M1 and earlier KONICA MINOLTA bizhub series versions GR1-M0 and earlier **Description** A protection mechanism failure vulnerability in the KONICA MINOLTA bizhub series allows a physical attacker to bypass the firmware integrity verification and to install malicious firmware. **Recommendations** For KONICA MINOLTA bizhub series versions G00-35 and earlier, update to a version that includes a fix for this issue. For KONICA MINOLTA bizhub series versions G00-B6 and earlier, update to a version that includes a fix for this issue. For KONICA MINOLTA bizhub series versions G00-37 and earlier, update to a version that includes a fix for this issue. For KONICA MINOLTA bizhub series versions G00-33 and earlier, update to a version that includes a fix for this issue. For KONICA MINOLTA bizhub series versions G00-19 and earlier, update to a version that includes a fix for this issue. For KONICA MINOLTA bizhub series versions GC7-X8 and earlier, update to a version that includes a fix for this issue. For KONICA MINOLTA bizhub series versions GC9-X4 and earlier, update to a version that includes a fix for this issue. For KONICA MINOLTA bizhub series versions GDQ-M0 and earlier, update to a version that includes a fix for this issue. For KONICA MINOLTA bizhub series versions GDQ-M1 and earlier, update to a version that includes a fix for this issue. For KONICA MINOLTA bizhub series versions GR1-M0 and earlier, update to a version that includes a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.