Security Vulnerability in Our printer driver

A security vulnerability has been identified in the printer driver "KX Driver" developed for the functions of multifunction devices and printers provided by KYOCERA Document Solutions.
The following is an overview of the issue and how to resolve it. As of the date of publication of this notice, we have not confirmed any attacks that take advantage of this vulnerability.


【Vulnerability description】

The vulnerability relates to a vulnerability known as Microsoft Windows Unquoted Service Path Enumeration. The creation of an unquoted service may allow an attacker to run arbitrary programs (such as malware) with Windows system privileges.

Vulnerability number: CVE-2023-38634



【Countermeasures】

As a countermeasure, we provide a new "KX Driver" that addresses security vulnerability. Please install the latest driver.

*This has been addressed in the "KX Driver" (version 8.4.1716).



【Contact Information】

For more information, please contact your local distributor where you purchased the product.

KYOCERA Document Solutions Malaysia Sdn. Bhd
No.71, Ground Floor, Jalan SS 15/5A, 47500 Subang Jaya, Selangor Darul Ehsan, Malaysia
Phone: 03-5634 5609
Customer careline: 1700-816-100
Fax number: 03-5612 5531


Contact

Tel: 03-5634 5609

Mail

Contact Us

Click here for further information

Product Catalog Download

For Kyocera customers

Driver & User Guide Download
© KYOCERA Document Solutions Malaysia Sdn. Bhd. All rights reserved.