Konica Minolta bizhub MFP devices before 2022-04-14 allow a Sandbox Escape. An attacker must attach a keyboard to a USB port, press F12, and then escape from the kiosk mode.
Conclusion & alert: CVE-2022-29586 is rated Moderate Risk (41.9/100): CVSS High severity, with low exploitation likelihood (EPSS 0.43%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.05% | 0.43% | +0.38% |
| 2 | 2025-10-12 | 0.07% | 0.05% | -0.02% |
| 3 | 2025-03-17 | — | 0.07% | — |
Full EPSS history (5 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 7.4 | 3.1 | HIGH |
|
0.7 | 6.0 | [email protected] |
| 6.9 | 2.0 | MEDIUM |
|
3.4 | 10.0 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| konicaminolta | bizhub_226i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_226i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_227_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_227_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_246i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_246i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_287_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_287_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_306i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_306i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_308_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_308_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_308e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_308e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_367_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_367_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_368_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_368_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_368e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_368e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_4052_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_4052_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_458_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_458_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_458e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_458e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_4752_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_4752_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_558_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_558_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_558e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_558e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_658e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_658e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_758_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_758_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_808_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_808_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_958_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_958_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c227_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c227_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c250i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c250i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c258_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c258_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c287_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c287_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c300i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c300i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c308_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c308_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3300i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3300i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3320i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3320i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3350i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3350i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3351_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3351_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c360i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c360i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c368_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c368_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3851_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3851_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3851fs_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3851fs_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c4000i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c4000i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c4050i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c4050i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c450i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c450i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c458_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c458_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c550i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c550i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c558_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c558_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c650i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c650i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c658_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c658_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c659_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c659_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c759_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c759_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_pro958_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_pro958_firmware:*:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://sec-consult.com/vulnerability-lab/ | Third Party Advisory |
| https://sec-consult.com/vulnerability-lab/advisory/sandbox-escape-with-root-access-clear-text-passwords-in-konica-minolta-bizhub-mfp-printer-terminals/ | Third Party Advisory |