CVE-2021-20871

Name of the Vulnerable Software and Affected Versions KONICA MINOLTA bizhub series versions G00-35 and earlier KONICA MINOLTA bizhub series versions G00-B6 and earlier KONICA MINOLTA bizhub series versions G00-37 and earlier KONICA MINOLTA bizhub series versions G00-33 and earlier KONICA MINOLTA bizhub series versions G00-19 and earlier KONICA MINOLTA bizhub series versions GC7-X8 and earlier KONICA MINOLTA bizhub series versions GC9-X4 and earlier KONICA MINOLTA bizhub series versions GDQ-M0 and earlier KONICA MINOLTA bizhub series versions GDQ-M1 and earlier KONICA MINOLTA bizhub series versions GR1-M0 and earlier KONICA MINOLTA bizhub series versions G00-22 and earlier

Description The issue allows an attacker on the adjacent network to obtain credentials if destination information, including credentials, is registered in the address book via a specific SOAP message.

Recommendations For KONICA MINOLTA bizhub series versions G00-35 and earlier, consider disabling the registration of destination information including credentials in the address book until a patch is available. For KONICA MINOLTA bizhub series versions G00-B6 and earlier, restrict access to the address book to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions G00-37 and earlier, avoid using the specific SOAP message that allows an attacker to obtain credentials. For KONICA MINOLTA bizhub series versions G00-33 and earlier, consider implementing additional security measures to protect against adjacent network attacks. For KONICA MINOLTA bizhub series versions G00-19 and earlier, restrict access to the address book and consider disabling the registration of destination information including credentials. For KONICA MINOLTA bizhub series versions GC7-X8 and earlier, consider updating the SOAP message handling to prevent credential exposure. For KONICA MINOLTA bizhub series versions GC9-X4 and earlier, restrict access to the address book and consider implementing additional security measures. For KONICA MINOLTA bizhub series versions GDQ-M0 and earlier, consider disabling the registration of destination information including credentials in the address book. For KONICA MINOLTA bizhub series versions GDQ-M1 and earlier, restrict access to the address book to minimize the risk of exploitation. For KONICA MINOLTA bizhub series versions GR1-M0 and earlier, consider implementing additional security measures to protect against adjacent network attacks. For KONICA MINOLTA bizhub series versions G00-22 and earlier, consider updating the SOAP message handling to prevent credential exposure.