6.5
MEDIUM
CVE-2021-20869
KONICA MINOLTA bizhub series LDAP Server Information Exposure
Description

Exposure of sensitive information to an unauthorized actor vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, bizhub 750i/650i/550i/450i G00-37 and earlier, bizhub 360i/300i G00-33 and earlier, bizhub C287i/C257i/C227i G00-19 and earlier, bizhub 306i/266i/246i/226i G00-B6 and earlier, bizhub C759/C659 GC7-X8 and earlier, bizhub C658/C558/C458 GC7-X8 and earlier, bizhub 958/808/758 GC7-X8 and earlier, bizhub 658e/558e/458e GC7-X8 and earlier, bizhub C287/C227 GC7-X8 and earlier, bizhub 287/227 GC7-X8 and earlier, bizhub 368e/308e GC7-X8 and earlier, bizhub C368/C308/C258 GC9-X4 and earlier, bizhub 558/458/368/308 GC9-X4 and earlier, bizhub C754e/C654e GDQ-M0 and earlier, bizhub 754e/654e GDQ-M0 and earlier, bizhub C554e/C454e GDQ-M1 and earlier, bizhub C364e/C284e/C224e GDQ-M1 and earlier, bizhub 554e/454e/364e/284e/224e GDQ-M1 and earlier, bizhub C754/C654 C554/C454 GR1-M0 and earlier, bizhub C364/C284/C224 GR1-M0 and earlier, bizhub 754/654 GR1-M0 and earlier, bizhub C4050i/C3350i/C4000i/C3300i G00-B6 and earlier, bizhub C3320i G00-B6 and earlier, bizhub 4750i/4050i G00-22 and earlier, bizhub 4700i G00-22 and earlier, bizhub C3851FS/C3851/C3351 GC9-X4 and earlier, and bizhub 4752/4052 GC9-X4 and earlier) allows an attacker on the adjacent network to obtain some of user credentials if LDAP server authentication is enabled via a specific SOAP message.

INFO

Published Date :

Jan. 4, 2022, 4:15 a.m.

Last Modified :

Jan. 13, 2022, 2:57 a.m.

Source :

[email protected]

Remotely Exploitable :

No

Impact Score :

3.6

Exploitability Score :

2.8
Affected Products

The following products are affected by CVE-2021-20869 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Konicaminolta bizhub_c750i_firmware
2 Konicaminolta bizhub_c650i_firmware
3 Konicaminolta bizhub_c550i_firmware
4 Konicaminolta bizhub_c450i_firmware
5 Konicaminolta bizhub_c360i_firmware
6 Konicaminolta bizhub_c300i_firmware
7 Konicaminolta bizhub_c250i_firmware
8 Konicaminolta bizhub_750i_firmware
9 Konicaminolta bizhub_650i_firmware
10 Konicaminolta bizhub_550i_firmware
11 Konicaminolta bizhub_450i_firmware
12 Konicaminolta bizhub_360i_firmware
13 Konicaminolta bizhub_300i_firmware
14 Konicaminolta bizhub_c287i_firmware
15 Konicaminolta bizhub_c257i_firmware
16 Konicaminolta bizhub_c227i_firmware
17 Konicaminolta bizhub_306i_firmware
18 Konicaminolta bizhub_266i_firmware
19 Konicaminolta bizhub_226i_firmware
20 Konicaminolta bizhub_c759_firmware
21 Konicaminolta bizhub_c659_firmware
22 Konicaminolta bizhub_c658_firmware
23 Konicaminolta bizhub_c558_firmware
24 Konicaminolta bizhub_c458_firmware
25 Konicaminolta bizhub_958_firmware
26 Konicaminolta bizhub_808_firmware
27 Konicaminolta bizhub_758_firmware
28 Konicaminolta bizhub_658e_firmware
29 Konicaminolta bizhub_558e_firmware
30 Konicaminolta bizhub_458e_firmware
31 Konicaminolta bizhub_c287_firmware
32 Konicaminolta bizhub_c227_firmware
33 Konicaminolta bizhub_287_firmware
34 Konicaminolta bizhub_227_firmware
35 Konicaminolta bizhub_368e_firmware
36 Konicaminolta bizhub_308e_firmware
37 Konicaminolta bizhub_c368_firmware
38 Konicaminolta bizhub_c308_firmware
39 Konicaminolta bizhub_c258_firmware
40 Konicaminolta bizhub_558_firmware
41 Konicaminolta bizhub_458_firmware
42 Konicaminolta bizhub_368_firmware
43 Konicaminolta bizhub_308_firmware
44 Konicaminolta bizhub_c754e_firmware
45 Konicaminolta bizhub_c654e_firmware
46 Konicaminolta bizhub_754e_firmware
47 Konicaminolta bizhub_654e_firmware
48 Konicaminolta bizhub_c554e_firmware
49 Konicaminolta bizhub_c454e_firmware
50 Konicaminolta bizhub_c364e_firmware
51 Konicaminolta bizhub_c284e_firmware
52 Konicaminolta bizhub_c224e_firmware
53 Konicaminolta bizhub_554e_firmware
54 Konicaminolta bizhub_454e_firmware
55 Konicaminolta bizhub_364e_firmware
56 Konicaminolta bizhub_284e_firmware
57 Konicaminolta bizhub_224e_firmware
58 Konicaminolta bizhub_c754_firmware
59 Konicaminolta bizhub_c654_firmware
60 Konicaminolta bizhub_c554_firmware
61 Konicaminolta bizhub_c454_firmware
62 Konicaminolta bizhub_c364_firmware
63 Konicaminolta bizhub_c284_firmware
64 Konicaminolta bizhub_c224_firmware
65 Konicaminolta bizhub_754_firmware
66 Konicaminolta bizhub_654_firmware
67 Konicaminolta bizhub_c4050i_firmware
68 Konicaminolta bizhub_c3350i_firmware
69 Konicaminolta bizhub_c4000i_firmware
70 Konicaminolta bizhub_c3300i_firmware
71 Konicaminolta bizhub_c3320i_firmware
72 Konicaminolta bizhub_4750i_firmware
73 Konicaminolta bizhub_4050i_firmware
74 Konicaminolta bizhub_4700i_firmware
75 Konicaminolta bizhub_c3851fs_firmware
76 Konicaminolta bizhub_c3851_firmware
77 Konicaminolta bizhub_c3351_firmware
78 Konicaminolta bizhub_4752_firmware
79 Konicaminolta bizhub_4052_firmware
80 Konicaminolta bizhub_246i_firmware
: Total Affected Vendor : 1 | Products : 80
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2021-20869.

URL Resource
https://jvn.jp/en/vu/JVNVU95192472/index.html Third Party Advisory VDB Entry
https://jvn.jp/vu/JVNVU95192472/index.html Third Party Advisory VDB Entry
https://www.konicaminolta.com/global/newsroom/topics/2021/1224-01-01.html Mitigation Vendor Advisory
https://www.konicaminolta.jp/business/support/important/211224_01_01.html Mitigation Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2021-20869 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2021-20869 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • Initial Analysis by [email protected]

    Jan. 13, 2022

    Action Type Old Value New Value
    Added CVSS V2 NIST (AV:A/AC:M/Au:N/C:P/I:N/A:N)
    Added CVSS V3.1 NIST AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    Changed Reference Type https://jvn.jp/en/vu/JVNVU95192472/index.html No Types Assigned https://jvn.jp/en/vu/JVNVU95192472/index.html Third Party Advisory, VDB Entry
    Changed Reference Type https://jvn.jp/vu/JVNVU95192472/index.html No Types Assigned https://jvn.jp/vu/JVNVU95192472/index.html Third Party Advisory, VDB Entry
    Changed Reference Type https://www.konicaminolta.com/global/newsroom/topics/2021/1224-01-01.html No Types Assigned https://www.konicaminolta.com/global/newsroom/topics/2021/1224-01-01.html Mitigation, Vendor Advisory
    Changed Reference Type https://www.konicaminolta.jp/business/support/important/211224_01_01.html No Types Assigned https://www.konicaminolta.jp/business/support/important/211224_01_01.html Mitigation, Vendor Advisory
    Added CWE NIST CWE-200
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c750i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c750i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c650i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c650i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c550i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c550i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c450i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c450i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c360i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c360i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c300i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c300i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c250i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c250i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_750i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_750i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_650i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_650i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_550i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_550i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_450i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_450i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_360i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_360i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_300i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_300i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c287i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c287i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c257i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c257i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c227i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c227i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_306i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_306i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_266i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_266i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_226i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_226i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c759_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_c759:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c659_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_c659:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c658_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_c658:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c558_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_c558:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c458_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_c458:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_958_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_958:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_808_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_808:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_758_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_758:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_658e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_658e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_558e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_558e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_458e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y1 OR cpe:2.3:h:konicaminolta:bizhub_458e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c287_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y0 OR cpe:2.3:h:konicaminolta:bizhub_c287:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c227_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y0 OR cpe:2.3:h:konicaminolta:bizhub_c227:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_287_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y0 OR cpe:2.3:h:konicaminolta:bizhub_287:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_227_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-y0 OR cpe:2.3:h:konicaminolta:bizhub_227:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_368e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x8 OR cpe:2.3:h:konicaminolta:bizhub_368e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_308e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x8 OR cpe:2.3:h:konicaminolta:bizhub_308e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c368_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_c368:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c308_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_c308:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c258_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_c258:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_558_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_558:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_458_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_458:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_368_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_368:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_308_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_308:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c754e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m0 OR cpe:2.3:h:konicaminolta:bizhub_c754e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c654e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m0 OR cpe:2.3:h:konicaminolta:bizhub_c654e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_754e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m0 OR cpe:2.3:h:konicaminolta:bizhub_754e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_654e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m0 OR cpe:2.3:h:konicaminolta:bizhub_654e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c554e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_c554e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c454e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_c454e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c364e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_c364e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c284e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_c284e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c224e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_c224e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_554e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_554e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_454e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_454e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_364e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_364e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_284e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_284e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_224e_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gdr-m1 OR cpe:2.3:h:konicaminolta:bizhub_224e:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c754_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gr4-m0 OR cpe:2.3:h:konicaminolta:bizhub_c754:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c654_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gr4-m0 OR cpe:2.3:h:konicaminolta:bizhub_c654:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c554_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gr4-m0 OR cpe:2.3:h:konicaminolta:bizhub_c554:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c454_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gr4-m0 OR cpe:2.3:h:konicaminolta:bizhub_c454:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c364_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gr4-m0 OR cpe:2.3:h:konicaminolta:bizhub_c364:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c284_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gr4-m0 OR cpe:2.3:h:konicaminolta:bizhub_c284:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c224_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gr4-m0 OR cpe:2.3:h:konicaminolta:bizhub_c224:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_754_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gr4-m0 OR cpe:2.3:h:konicaminolta:bizhub_754:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_654_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gr4-m0 OR cpe:2.3:h:konicaminolta:bizhub_654:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c4050i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c4050i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c3350i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c3350i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c4000i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c4000i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c3300i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c3300i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c3320i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_c3320i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_4750i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_4750i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_4050i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_4050i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_4700i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_4700i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c3851fs_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_c3851fs:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c3851_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_c3851:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_c3351_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_c3351:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_4752_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_4752:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_4052_firmware:*:*:*:*:*:*:*:* versions up to (excluding) gca-x4 OR cpe:2.3:h:konicaminolta:bizhub_4052:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:konicaminolta:bizhub_246i_firmware:*:*:*:*:*:*:*:* versions up to (excluding) g00-e9 OR cpe:2.3:h:konicaminolta:bizhub_246i:-:*:*:*:*:*:*:*
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2021-20869 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2021-20869 weaknesses.

CAPEC-13: Subverting Environment Variable Values Subverting Environment Variable Values CAPEC-22: Exploiting Trust in Client Exploiting Trust in Client CAPEC-59: Session Credential Falsification through Prediction Session Credential Falsification through Prediction CAPEC-60: Reusing Session IDs (aka Session Replay) Reusing Session IDs (aka Session Replay) CAPEC-79: Using Slashes in Alternate Encoding Using Slashes in Alternate Encoding CAPEC-116: Excavation Excavation CAPEC-169: Footprinting Footprinting CAPEC-224: Fingerprinting Fingerprinting CAPEC-285: ICMP Echo Request Ping ICMP Echo Request Ping CAPEC-287: TCP SYN Scan TCP SYN Scan CAPEC-290: Enumerate Mail Exchange (MX) Records Enumerate Mail Exchange (MX) Records CAPEC-291: DNS Zone Transfers DNS Zone Transfers CAPEC-292: Host Discovery Host Discovery CAPEC-293: Traceroute Route Enumeration Traceroute Route Enumeration CAPEC-294: ICMP Address Mask Request ICMP Address Mask Request CAPEC-295: Timestamp Request Timestamp Request CAPEC-296: ICMP Information Request ICMP Information Request CAPEC-297: TCP ACK Ping TCP ACK Ping CAPEC-298: UDP Ping UDP Ping CAPEC-299: TCP SYN Ping TCP SYN Ping CAPEC-300: Port Scanning Port Scanning CAPEC-301: TCP Connect Scan TCP Connect Scan CAPEC-302: TCP FIN Scan TCP FIN Scan CAPEC-303: TCP Xmas Scan TCP Xmas Scan CAPEC-304: TCP Null Scan TCP Null Scan CAPEC-305: TCP ACK Scan TCP ACK Scan CAPEC-306: TCP Window Scan TCP Window Scan CAPEC-307: TCP RPC Scan TCP RPC Scan CAPEC-308: UDP Scan UDP Scan CAPEC-309: Network Topology Mapping Network Topology Mapping CAPEC-310: Scanning for Vulnerable Software Scanning for Vulnerable Software CAPEC-312: Active OS Fingerprinting Active OS Fingerprinting CAPEC-313: Passive OS Fingerprinting Passive OS Fingerprinting CAPEC-317: IP ID Sequencing Probe IP ID Sequencing Probe CAPEC-318: IP 'ID' Echoed Byte-Order Probe IP 'ID' Echoed Byte-Order Probe CAPEC-319: IP (DF) 'Don't Fragment Bit' Echoing Probe IP (DF) 'Don't Fragment Bit' Echoing Probe CAPEC-320: TCP Timestamp Probe TCP Timestamp Probe CAPEC-321: TCP Sequence Number Probe TCP Sequence Number Probe CAPEC-322: TCP (ISN) Greatest Common Divisor Probe TCP (ISN) Greatest Common Divisor Probe CAPEC-323: TCP (ISN) Counter Rate Probe TCP (ISN) Counter Rate Probe CAPEC-324: TCP (ISN) Sequence Predictability Probe TCP (ISN) Sequence Predictability Probe CAPEC-325: TCP Congestion Control Flag (ECN) Probe TCP Congestion Control Flag (ECN) Probe CAPEC-326: TCP Initial Window Size Probe TCP Initial Window Size Probe CAPEC-327: TCP Options Probe TCP Options Probe CAPEC-328: TCP 'RST' Flag Checksum Probe TCP 'RST' Flag Checksum Probe CAPEC-329: ICMP Error Message Quoting Probe ICMP Error Message Quoting Probe CAPEC-330: ICMP Error Message Echoing Integrity Probe ICMP Error Message Echoing Integrity Probe CAPEC-472: Browser Fingerprinting Browser Fingerprinting CAPEC-497: File Discovery File Discovery CAPEC-508: Shoulder Surfing Shoulder Surfing CAPEC-573: Process Footprinting Process Footprinting CAPEC-574: Services Footprinting Services Footprinting CAPEC-575: Account Footprinting Account Footprinting CAPEC-576: Group Permission Footprinting Group Permission Footprinting CAPEC-577: Owner Footprinting Owner Footprinting CAPEC-616: Establish Rogue Location Establish Rogue Location CAPEC-643: Identify Shared Files/Directories on System Identify Shared Files/Directories on System CAPEC-646: Peripheral Footprinting Peripheral Footprinting CAPEC-651: Eavesdropping Eavesdropping
Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

0.15 }} 0.04%

score

0.51869

percentile

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
: