VDB-311655 · CVE-2025-5884 · GCVE-100-311655

Konica Minolta bizhub ଯେପର୍ଯ୍ୟନ୍ତ 20250202 Display MFP Information List Model Name କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ

Rakkoon nageenyaa kan ସମସ୍ୟାଜନକ jedhamuun beekamu Konica Minolta bizhub ଯେପର୍ଯ୍ୟନ୍ତ 20250202 keessatti argameera. Kan miidhamte is hojii hin beekamne kutaa Display MFP Information List keessa. Hojii jijjiirraa irratti gaggeeffame Model Name gara କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ geessa. CWE fayyadamuun rakkoo ibsuun gara CWE-79 geessa. Dadhabbii kana yeroo 06/09/2025 maxxanfameera. Odeeffannoon kun buufachuuf drive.google.com irratti qoodameera. Dogoggorri kun akka CVE-2025-5884tti beekama. Yaaliin weeraraa fageenya irraa jalqabamuu ni danda'a. Faayidaaleen teeknikaa ni jiru. Waliigalatti, meeshaa balaa kana fayyadamuuf jiru. Qorannoo miidhaa (exploit) uummataaf ifoomameera fi fayyadamamuu danda'a. Amma, gatii ammee exploit might be approx. USD $0-$5k ta'uu danda'a. Akka ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ jedhamee ibsameera. Carraa exploit kana drive.google.com irraa buufachuun ni danda'ama. Akka 0-daytti, gatii daldalaa dhoksaa tilmaamame $0-$5k ta'ee ture. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

2 ଆଡାପ୍ଟେସନ୍ · 96 ପଏଣ୍ଟ

ଫିଲ୍ଡ	ସୃଷ୍ଟି ହୋଇଛି 06/09/2025 07:52 AM	ଅଦ୍ୟତନ 1/1 01/30/2026 03:05 AM
cvss4_vuldb_at	N	N
cvss4_vuldb_pr	L	L
cvss4_vuldb_sc	N	N
cvss4_vuldb_si	N	N
cvss4_vuldb_sa	N	N
cvss2_vuldb_basescore	4.0	4.0
cvss2_vuldb_tempscore	3.6	3.6
cvss3_vuldb_basescore	3.5	3.5
cvss3_vuldb_tempscore	3.3	3.3
cvss3_meta_basescore	3.5	4.1
cvss3_meta_tempscore	3.3	4.1
cvss4_vuldb_bscore	5.1	5.1
cvss4_vuldb_btscore	2.0	2.0
advisory_date	1749420000 (06/09/2025)	1749420000 (06/09/2025)
price_0day	$0-$5k	$0-$5k
software_vendor	Konica Minolta	Konica Minolta
software_name	bizhub	bizhub
software_version	<=20250202	<=20250202
software_component	Display MFP Information List	Display MFP Information List
software_argument	Model Name	Model Name
vulnerability_cwe	CWE-79 (କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ)	CWE-79 (କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ)
vulnerability_risk	1	1
cvss3_vuldb_av	N	N
cvss3_vuldb_ac	L	L
cvss3_vuldb_ui	R	R
cvss3_vuldb_s	U	U
cvss3_vuldb_c	N	N
cvss3_vuldb_i	L	L
cvss3_vuldb_a	N	N
cvss3_vuldb_e	P	P
cvss3_vuldb_rc	C	C
advisory_url	https://drive.google.com/file/d/1A0JEnmnUGNjGsizRu99uz2ynqQ3v9ZKB/view	https://drive.google.com/file/d/1A0JEnmnUGNjGsizRu99uz2ynqQ3v9ZKB/view
exploit_availability	1	1
exploit_publicity	1	1
exploit_url	https://drive.google.com/file/d/1A0JEnmnUGNjGsizRu99uz2ynqQ3v9ZKB/view	https://drive.google.com/file/d/1A0JEnmnUGNjGsizRu99uz2ynqQ3v9ZKB/view
source_cve	CVE-2025-5884	CVE-2025-5884
cna_responsible	VulDB	VulDB
cvss2_vuldb_av	N	N
cvss2_vuldb_ac	L	L
cvss2_vuldb_ci	N	N
cvss2_vuldb_ii	P	P
cvss2_vuldb_ai	N	N
cvss2_vuldb_e	POC	POC
cvss2_vuldb_rc	C	C
cvss4_vuldb_av	N	N
cvss4_vuldb_ac	L	L
cvss4_vuldb_ui	P	P
cvss4_vuldb_vc	N	N
cvss4_vuldb_vi	L	L
cvss4_vuldb_va	N	N
cvss4_vuldb_e	P	P
cvss2_vuldb_au	S	S
cvss2_vuldb_rl	ND	ND
cvss3_vuldb_pr	L	L
cvss3_vuldb_rl	X	X
cve_nvd_summary		A vulnerability, which was classified as problematic, was found in Konica Minolta bizhub up to 20250202. This affects an unknown part of the component Display MFP Information List. The manipulation of the argument Model Name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
cve_nvd_summaryes		Se detectó una vulnerabilidad clasificada como problemática en Konica Minolta bizhub hasta la versión 20250202. Esta afecta a una parte desconocida del componente Display MFP Information List. La manipulación del argumento "Model Name" provoca Cross-Site Scripting. Es posible iniciar el ataque de forma remota. Se ha hecho público el exploit y puede que sea utilizado .
cvss4_cna_av		N
cvss4_cna_ac		L
cvss4_cna_at		N
cvss4_cna_pr		L
cvss4_cna_ui		P
cvss4_cna_vc		N
cvss4_cna_vi		L
cvss4_cna_va		N
cvss4_cna_sc		N
cvss4_cna_si		N
cvss4_cna_sa		N
cvss4_cna_bscore		5.1
cvss3_cna_av		N
cvss3_cna_ac		L
cvss3_cna_pr		L
cvss3_cna_ui		R
cvss3_cna_s		U
cvss3_cna_c		N
cvss3_cna_i		L
cvss3_cna_a		N
cvss3_cna_basescore		3.5
cvss3_nvd_av		N
cvss3_nvd_ac		L
cvss3_nvd_pr		L
cvss3_nvd_ui		R
cvss3_nvd_s		C
cvss3_nvd_c		L
cvss3_nvd_i		L
cvss3_nvd_a		N
cvss3_nvd_basescore		5.4
cvss2_cna_av		N
cvss2_cna_ac		L
cvss2_cna_au		S
cvss2_cna_ci		N
cvss2_cna_ii		P
cvss2_cna_ai		N
cvss2_cna_basescore		4

◂ ପଛକୁ ସମୀକ୍ଷା ଆହୁରି ଦୂରରେ ▸

Do you know our Splunk app?

Download it now for free!