SERVICE LOCATION PROTOCOL VULNERABILITY | KONICA MINOLTA

Digital Workplace
Digital Workplace Welcome to an intelligent connected workplace
At Konica Minolta, we are passionate in empowering people and organisations to cope with increasingly mobile and flexible work environments. By taking complexity out of workplace processes we help people get work done, simply and easily. Our holistic Digital Workplace solutions make data more secure and compliant, information better accessible, work more productive and infrastructure simpler to manage:
Overview Multifunctional devices Video Solution Services
Cloud Services
Security Services
Managed IT Services
Managed Application Services
Collaboration & Communication
Information Management Services
Workflow & Automation
Managed Print Services
Remote Working & Home Office
Remote Support
- Remote Support overview
Professional Printing
Professional Printing Innovative digital printing and inkjet solutions to expand your business
As a printing company you face a rapidly changing market with all the challenges of offering new services while lowering your costs and digital printing. We use our decade-long experience and our leading market position to provide you with specifically tailored, high quality printing solutions for your business needs. The Accurio brand for all of Konica Minolta’s market-leading production printing systems and software reflects their advanced, automated and accurate nature: Key strengths and attributes include eliminating routine technology burdens and saving time, as well having less human touch that cuts down errors, waste and production costs. Experience the next evolutionary stage by Konica Minolta now!
Hardware Software Services IPP Blog
Production Printing Solutions
Industrial Printing Solutions
Media Guide
- Media Guide
Healthcare
Healthcare Digitizing Healthcare Workflows
Today’s healthcare market is heavily influenced by trends such as demanding patients expecting highly individual care, healthcare insurers exerting more and more influence on how care is to be provided, and healthcare organisations faced by budget constraints and increased pressure to keep costs in check. Our advanced solutions cut through the complexities of your IT processes by automating and optimising document-related processes to simplify information flows and make medical information accessible and compliant. On top of that, we provide the hospital and clinic market with highly-acclaimed, high-performance digital diagnostic X-ray imaging systems.
Healthcare Hardware Healthcare Solutions Download Centre Contact Us
Healthcare Solutions
Healthcare Hardware
Find a dealer near you
- Where to buy our Healthcare Solutions
Measuring Instruments
Measuring Instruments Measuring Instruments
We offer measuring instruments that make full use of our advanced optical technology to quantify light and color with high reliability, and high value-added products and solutions for numerical control of those properties.
Solutions Hardware Learning Centre Technical Service
Automotive
Building Materials
Chemicals
- Powders, Pellets and Granules
- Liquid Chemical samples
Food and Ingredients
Paint and Coating
Pharmaceutical and Personal Care Products
Plastic
Pulp and Paper
- Paper Products
Textiles
Industries
Textile Printing
Industrial Inkjet
Business Innovation

Back

Home Support Service Location Protocol vulnerability

Langenhagen, Germany, 28 April, 2023

On April 25, researchers at Bitsight and Curesec released an article about a vulnerability they had discovered, which allowed them to abuse the Service Location Protocol (SLP) and carry out an amplified DDoS (Distributed Denial of Service) attack.

While SLP is not intended to be utilized via the internet, the researchers were able to locate internet exposed devices that have the SLP service enabled and thus could be exploited in order to carry out the attack on other victim computers/servers.

In their article, the researchers also mention that a number of vulnerable Konica Minolta devices were identified. Internet exposed devices that are acting as Service Agents are at risk of being exploited in order for the attack to be carried out on other victims. Konica Minolta recommends the following measures to mitigate the potential risk:

To protect against CVE-2023-29552, SLP should be disabled on all systems running on untrusted networks, like those directly connected to the Internet.
If that is not possible, firewalls should be configured to filter traffic on UDP and TCP port 427.
In our Office Printing and Production Printing devices, the “SLP Setting” can usually be configured via Network Settings within the Administrator mode. The setting can be accessed via the MFP panel, PageScope Web Connection or Remote Panel.

Please find more information about the vulnerability and mitigation instructions here: Security Advice