Change language

Change country

Security vulnerabilities in our company document output management software.

A security vulnerability has been identified in KYOCERA Net Manager a Document output management software provided by KYOCERA Document Solutions. The following is an overview of the issue and how to resolve it. As of the date of publication of this notice, we have not confirmed any attacks that take advantage of this vulnerability. 

Vulnerability description

Issue 1. Leakage of user information 

In environments where KYOCERA Net Manager is used, it is possible for
non-administrators to obtain the hashes of usernames and passwords managed by the KYOCERA Net Manager print server. 

Issue 2. Leakage of Print Server file list 

In environments where KYOCERA Net Manager is used, you can use the browser feature to see the directory structure of Print Server and Central Server of KYOCERA Net Manager. 

Issue 3. Leakage of user information 

In environments where KYOCERA Net Manager is used, non-administrators can obtain the user list managed by Print Server and Central Server of KYOCERA Net Manager by opening URL.

Issue 4. Remote code Execution 

In environments where KYOCERA Net Manager is used, you can execute remote code in Print Server without privileges. 

Vulnerability number: CVE-2021-31769

Countermeasures

KYOCERA Document Solutions offers updated software to address security vulnerabilities. We recommend that you upgrade to the latest version, 8.2, to ensure system security.
Please contact the Kyocera Document Solutions sales company / partner in your region for information on changing the software.

Products affected by this vulnerability 

For more information on how this vulnerability affects products, please contact your local distributor where you purchased the product.

Click here for more information

Cookies and your privacy

We use essential cookies to ensure the proper functioning of our website. Statistical cookies help us to better understand how our website is used, and marketing cookies allow us to better tailor content to the visitors of our website. You can select your cookie preferences using the ‘Preferences’ button below, or select ‘Accept all cookies’ to continue with all cookies. By selecting ‘Accept all cookies’ you agree to the storing of these cookies on your device. You can refuse these cookies by selecting ‘Accept only essential cookies’, in this case you allow us to place only those cookies which are necessary for the correct display of our website on your device.

Cookie preferences

Field is required

We use cookies to make sure that our website is working properly or, occasionally, to provide a service on your request (such as managing your cookie preferences). These cookies are always active unless you set your browser to block them, which may prevent some parts of the website from working as expected.

Field is required

These cookies allow us to measure and improve the performance of our website.

Field is required

These cookies are only placed in case you give your consent. We use Marketing cookies to follow how you click and visit our websites in order to show you content based on your interests and to show you personalised advertisement. Currently you do not accept these cookies. Please check this box if you would like to.