Insufficient Credential Protection in Konica Minolta Multifunction Printers
CVE-2025-6081

6.8MEDIUM

Key Information:

Vendor: Konica Minolta
Status: Bizhub 227 Multifunction Printers
Vendor: CVE Published:; 1 July 2025

🔔 Create Konica Minolta Vulnerability Alert

What is CVE-2025-6081?

A vulnerability in Konica Minolta's bizhub 227 Multifunction Printers allows attackers to exploit insufficient credential protection in LDAP configurations. Attackers can reconfigure the device to direct authentication requests to an externally controlled LDAP server. Should a password be configured on the device, this vulnerability can lead to exposure of sensitive credentials, enabling unauthorized access and potential exploitation.

Affected Version(s)

bizhub 227 Multifunction printers GCQ-Y3

References

https://www.rapid7.com/blog/post/cve-2025-6081-konica-min...

https://www.konicaminolta.com/global-en/security/advisory...

vendor-advisory

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 1, 2025
Vulnerability Reserved
Jun 13, 2025