CVE-2022-29588
HIGHKonicaminolta Bizhub 226i Firmware - Insufficiently Protected Crede...
Title source: ruleDescription
Konica Minolta bizhub MFP devices before 2022-04-14 use cleartext password storage for the /var/log/nginx/html/ADMINPASS and /etc/shadow files.
Scores
CVSS v3
7.5
EPSS
0.0051
EPSS Percentile
65.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Classification
CWE
CWE-522
Status
published
Affected Products (45)
konicaminolta/bizhub_226i_firmware
< 2022-04-14
konicaminolta/bizhub_227_firmware
< 2022-04-14
konicaminolta/bizhub_246i_firmware
< 2022-04-14
konicaminolta/bizhub_287_firmware
< 2022-04-14
konicaminolta/bizhub_306i_firmware
< 2022-04-14
konicaminolta/bizhub_308_firmware
< 2022-04-14
konicaminolta/bizhub_308e_firmware
< 2022-04-14
konicaminolta/bizhub_367_firmware
< 2022-04-14
konicaminolta/bizhub_368_firmware
< 2022-04-14
konicaminolta/bizhub_368e_firmware
< 2022-04-14
konicaminolta/bizhub_4052_firmware
< 2022-04-14
konicaminolta/bizhub_458_firmware
< 2022-04-14
konicaminolta/bizhub_458e_firmware
< 2022-04-14
konicaminolta/bizhub_4752_firmware
< 2022-04-14
konicaminolta/bizhub_558_firmware
< 2022-04-14
... and 30 more
Timeline
Published
May 16, 2022
Tracked Since
Feb 18, 2026