Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root (aka superuser) access privileges.
Conclusion & alert: CVE-2022-29587 is rated Exploit Available (50/100): CVSS Medium severity, with low exploitation likelihood (EPSS 0.39%). Core evidence: 1 public exploit reference(s) are indexed (Exploit-DB). Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
| EDB-ID | Source | Kind | Published | Link |
|---|---|---|---|---|
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.10% | 0.39% | +0.29% |
| 2 | 2025-05-17 | 0.05% | 0.10% | +0.06% |
| 3 | 2025-03-30 | — | 0.05% | — |
Full EPSS history (6 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 4.0 | 3.1 | MEDIUM |
|
0.4 | 3.6 | [email protected] |
| 4.7 | 2.0 | MEDIUM |
|
3.4 | 6.9 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| konicaminolta | bizhub_226i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_226i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_227_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_227_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_246i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_246i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_287_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_287_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_306i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_306i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_308_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_308_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_308e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_308e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_367_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_367_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_368_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_368_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_368e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_368e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_4052_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_4052_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_458_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_458_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_458e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_458e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_4752_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_4752_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_558_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_558_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_558e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_558e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_658e_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_658e_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_758_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_758_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_808_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_808_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_958_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_958_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c227_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c227_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c250i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c250i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c258_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c258_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c287_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c287_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c300i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c300i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c308_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c308_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3300i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3300i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3320i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3320i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3350i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3350i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3351_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3351_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c360i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c360i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c368_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c368_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3851_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3851_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c3851fs_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c3851fs_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c4000i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c4000i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c4050i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c4050i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c450i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c450i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c458_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c458_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c550i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c550i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c558_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c558_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c650i_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c650i_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c658_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c658_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c659_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c659_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_c759_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_c759_firmware:*:*:*:*:*:*:*:* |
| konicaminolta | bizhub_pro958_firmware | < 2022-04-14 | cpe:2.3:o:konicaminolta:bizhub_pro958_firmware:*:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://sec-consult.com/vulnerability-lab/ | Third Party Advisory |
| https://sec-consult.com/vulnerability-lab/advisory/sandbox-escape-with-root-access-clear-text-passwords-in-konica-minolta-bizhub-mfp-printer-terminals/ | Exploit Third Party Advisory |