Detections
Analytics

Konica Bizhub Multifunction Printers Improper Validation of Syntactic Correctness of Input (CVE-2024-51983)

high Tenable OT Security Plugin ID 505034

Synopsis

The remote OT asset is affected by a vulnerability.

Description

An unauthenticated attacker who can connect to the Web Services feature (HTTP TCP port 80) can issue a WS-Scan SOAP request containing an unexpected JobToken value which will crash the target device. The device will reboot, after which the attacker can reissue the command to repeatedly crash the device.

Solution

Refer to the vendor advisory.

See Also

https://nvd.nist.gov/vuln/detail/CVE-2024-51983

https://www.cve.org/CVERecord?id=CVE-2024-51983

http://www.nessus.org/u?6c7d4950

Plugin Details

Severity: High

ID: 505034

File Name: tenable_ot_konica_CVE-2024-51983.nasl

Version: 1.1

Type: remote

Family: Tenable.ot

Published: 1/21/2026

Updated: 1/21/2026

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v3

Risk Factor: High

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vulnerability Information

CPE: cpe:/o:konicaminolta:bizhub_5020i_firmware, cpe:/o:konicaminolta:bizhub_5000i_firmware, cpe:/o:konicaminolta:bizhub_3000mf_firmware, cpe:/o:konicaminolta:bizhub_3080mf_firmware, cpe:/o:konicaminolta:bizhub_4020i_firmware, cpe:/o:konicaminolta:bizhub_4000i_firmware

Required KB Items: Tenable.ot/Konica

Vulnerability Publication Date: 6/25/2025

Reference Information

CVE: CVE-2024-51983

CWE: 1286