CVE-2025-6081

{"id": "CVE-2025-6081", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "cve@rapid7.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 4.0, "exploitabilityScore": 2.3}]}, "published": "2025-07-01T04:15:45.530", "references": [{"url": "https://www.konicaminolta.com/global-en/security/advisory/pdf/km-2025-0003.pdf", "source": "cve@rapid7.com"}, {"url": "https://www.rapid7.com/blog/post/cve-2025-6081-konica-minolta-bizhub-pass-back-attack-vulnerability-not-fixed/", "source": "cve@rapid7.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "cve@rapid7.com", "description": [{"lang": "en", "value": "CWE-522"}]}], "descriptions": [{"lang": "en", "value": "Insufficiently Protected Credentials in LDAP in Konica Minolta\u00a0bizhub 227 Multifunction printers\u00a0version GCQ-Y3 or earlier\u00a0allows an attacker can reconfigure the target device to use an external LDAP service controlled by the attacker. If an LDAP password is set on the target device, the attacker can force the target device to authenticate to the attacker controlled LDAP service. This will allow the attacker to capture the plaintext password of the configured LDAP service."}, {"lang": "es", "value": "Las credenciales de protecci\u00f3n insuficiente en LDAP en las impresoras Konica Minolta bizhub 227 Multifunction, versi\u00f3n GCQ-Y3 o anterior, permiten que un atacante reconfigura el dispositivo objetivo para usar un servicio LDAP externo controlado por el atacante. Si se configura una contrase\u00f1a LDAP en el dispositivo objetivo, el atacante puede forzar su autenticaci\u00f3n en el servicio LDAP controlado por el atacante. Esto le permitir\u00e1 capturar la contrase\u00f1a en texto plano del servicio LDAP configurado."}], "lastModified": "2025-07-03T15:14:12.767", "sourceIdentifier": "cve@rapid7.com"}