{
  "document" : {
    "aggregate_severity" : {
      "text" : "mittel"
    },
    "category" : "csaf_base",
    "csaf_version" : "2.0",
    "distribution" : {
      "tlp" : {
        "label" : "WHITE",
        "url" : "https://www.first.org/tlp/"
      }
    },
    "lang" : "de-DE",
    "notes" : [ {
      "category" : "legal_disclaimer",
      "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen."
    }, {
      "category" : "description",
      "text" : "Kyocera ist ein Hersteller u.a. von Druckern.",
      "title" : "Produktbeschreibung"
    }, {
      "category" : "summary",
      "text" : "Ein Angreifer aus dem lokalen Netzwerk kann mehrere Schwachstellen in verschiedenen Modellen der Kyocera ECOSYS und TASKalfa Produktfamilien ausnutzen, um Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuführen.",
      "title" : "Angriff"
    }, {
      "category" : "general",
      "text" : "- BIOS/Firmware\n- Hardware Appliance",
      "title" : "Betroffene Betriebssysteme"
    } ],
    "publisher" : {
      "category" : "other",
      "contact_details" : "csaf-provider@cert-bund.de",
      "name" : "Bundesamt für Sicherheit in der Informationstechnik",
      "namespace" : "https://www.bsi.bund.de"
    },
    "references" : [ {
      "category" : "self",
      "summary" : "WID-SEC-W-2026-0915 - CSAF Version",
      "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0915.json"
    }, {
      "category" : "self",
      "summary" : "WID-SEC-2026-0915 - Portal Version",
      "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0915"
    }, {
      "category" : "external",
      "summary" : "Kyocera-Sicherheitshinweise",
      "url" : "https://www.kyoceradocumentsolutions.de/de/support/sicherheitsluecken.html"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2013-0248",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2013-0248"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2014-0050",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2014-0050"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2015-8126",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2015-8126"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2015-8472",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2015-8472"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2016-1000031",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2016-1000031"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2016-3092",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2016-3092"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2016-3751",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2016-3751"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2016-9842",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2016-9842"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2017-12652",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2017-12652"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2022-37434",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2022-37434"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2022-40303",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2022-40303"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2022-40304",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2022-40304"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2023-24998",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2023-24998"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2023-29469",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2023-29469"
    }, {
      "category" : "external",
      "summary" : "National Vulnerability Database CVE-2024-20952",
      "url" : "https://nvd.nist.gov/vuln/detail/CVE-2024-20952"
    }, {
      "category" : "external",
      "summary" : "Kyocera-Sicherheitshinweise - Update Juni 2026",
      "url" : "https://www.kyoceradocumentsolutions.de/de/support/sicherheitsluecken.html"
    } ],
    "source_lang" : "en-US",
    "title" : "Kyocera Drucker: Mehrere Schwachstellen",
    "tracking" : {
      "current_release_date" : "2026-06-01T22:00:00.000+00:00",
      "generator" : {
        "date" : "2026-06-02T05:17:27.650+00:00",
        "engine" : {
          "name" : "BSI-WID",
          "version" : "1.6.0"
        }
      },
      "id" : "WID-SEC-W-2026-0915",
      "initial_release_date" : "2026-03-30T22:00:00.000+00:00",
      "revision_history" : [ {
        "date" : "2026-03-30T22:00:00.000+00:00",
        "number" : "1",
        "summary" : "Initiale Fassung"
      }, {
        "date" : "2026-04-09T22:00:00.000+00:00",
        "number" : "2",
        "summary" : "Anpassung CVSS"
      }, {
        "date" : "2026-04-15T22:00:00.000+00:00",
        "number" : "3",
        "summary" : "Ergänzung von Kyocera bereitgestellter Informationen"
      }, {
        "date" : "2026-06-01T22:00:00.000+00:00",
        "number" : "4",
        "summary" : "Weitere Updates von Kyocera verfügbar."
      } ],
      "status" : "final",
      "version" : "4"
    }
  },
  "product_tree" : {
    "branches" : [ {
      "branches" : [ {
        "branches" : [ {
          "category" : "product_version",
          "name" : "TASKalfa",
          "product" : {
            "name" : "Kyocera Printer TASKalfa",
            "product_id" : "T029668",
            "product_identification_helper" : {
              "cpe" : "cpe:/h:kyocera:printer:taskalfa"
            }
          }
        }, {
          "category" : "product_version",
          "name" : "ECOSYS",
          "product" : {
            "name" : "Kyocera Printer ECOSYS",
            "product_id" : "T029669",
            "product_identification_helper" : {
              "cpe" : "cpe:/h:kyocera:printer:ecosys"
            }
          }
        } ],
        "category" : "product_name",
        "name" : "Printer"
      } ],
      "category" : "vendor",
      "name" : "Kyocera"
    } ]
  },
  "vulnerabilities" : [ {
    "cve" : "CVE-2013-0248",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2013-0248"
  }, {
    "cve" : "CVE-2014-0050",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2014-0050"
  }, {
    "cve" : "CVE-2015-8126",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2015-8126"
  }, {
    "cve" : "CVE-2015-8472",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2015-8472"
  }, {
    "cve" : "CVE-2016-1000031",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2016-1000031"
  }, {
    "cve" : "CVE-2016-3092",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2016-3092"
  }, {
    "cve" : "CVE-2016-3751",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2016-3751"
  }, {
    "cve" : "CVE-2016-9842",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2016-9842"
  }, {
    "cve" : "CVE-2017-12652",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2017-12652"
  }, {
    "cve" : "CVE-2022-37434",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2022-37434"
  }, {
    "cve" : "CVE-2022-40303",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2022-40303"
  }, {
    "cve" : "CVE-2022-40304",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2022-40304"
  }, {
    "cve" : "CVE-2023-24998",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2023-24998"
  }, {
    "cve" : "CVE-2023-29469",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2023-29469"
  }, {
    "cve" : "CVE-2024-20952",
    "product_status" : {
      "known_affected" : [ "T029669", "T029668" ]
    },
    "release_date" : "2026-03-30T22:00:00.000+00:00",
    "title" : "CVE-2024-20952"
  } ]
}