{"id":38491,"date":"2025-06-27T15:57:48","date_gmt":"2025-06-27T13:57:48","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=38491"},"modified":"2025-06-27T16:07:14","modified_gmt":"2025-06-27T14:07:14","slug":"vulnerabilities-in-689-brother-and-other-printer-models-june-2025","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2025\/06\/27\/vulnerabilities-in-689-brother-and-other-printer-models-june-2025\/","title":{"rendered":"Vulnerabilities in 689 Brother and other printer models (June 2025)"},"content":{"rendered":"

\"Sicherheit[German<\/a>]Security researchers from Rapid 7 have looked closer at various multi feature printers for vulnerabilities. They found them in the firmware of 689 Brother printer models. However, some printers from other manufacturers are also vulnerable.<\/p>\n

<\/p>\n

Security analysis by Rapid 7<\/h2>\n

\"\"Security researchers from Rapid 7 wanted to find out how secure various printers are. In a comprehensive analysis, they carried out a zero-day research project on multifunction printers (MFPs). Primarily models from the manufacturer Brother were examined, but several other manufacturers were also scrutinized.<\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n
CVE<\/th>\nDescription<\/th>\nAffected Service<\/th>\nCVSS<\/th>\n<\/tr>\n<\/thead>\n
CVE-2024-51977<\/a><\/td>\nAn unauthenticated attacker can leak sensitive information.<\/td>\nHTTP (Port 80), HTTPS (Port 443), IPP (Port 631)<\/td>\n5.3 (Medium)<\/a><\/td>\n<\/tr>\n
CVE-2024-51978<\/a><\/td>\nAn unauthenticated attacker can generate the device's default administrator password.<\/td>\nHTTP (Port 80), HTTPS (Port 443), IPP (Port 631)<\/td>\n9.8 (Critical)<\/a><\/td>\n<\/tr>\n
CVE-2024-51979<\/a><\/td>\nAn authenticated attacker can trigger a stack based buffer overflow.<\/td>\nHTTP (Port 80), HTTPS (Port 443), IPP (Port 631)<\/td>\n7.2 (High)<\/a><\/td>\n<\/tr>\n
CVE-2024-51980<\/a><\/td>\nAn unauthenticated attacker can force the device to open a TCP connection.<\/td>\nWeb Services over HTTP (Port 80)<\/td>\n5.3 (Medium)<\/a><\/td>\n<\/tr>\n
CVE-2024-51981<\/a><\/td>\nAn unauthenticated attacker can force the device to perform an arbitrary HTTP request.<\/td>\nWeb Services over HTTP (Port 80)<\/td>\n5.3 (Medium)<\/a><\/td>\n<\/tr>\n
CVE-2024-51982<\/a><\/td>\nAn unauthenticated attacker can crash the device.<\/td>\nPJL (Port 9100)<\/td>\n7.5 (High)<\/a><\/td>\n<\/tr>\n
CVE-2024-51983<\/a><\/td>\nAn unauthenticated attacker can crash the device.<\/td>\nWeb Services over HTTP (Port 80)<\/td>\n7.5 (High)<\/a><\/td>\n<\/tr>\n
CVE-2024-51984<\/a><\/td>\nAn authenticated attacker can disclose the password of a configured external service.<\/td>\nLDAP, FTP<\/td>\n6.8 (Medium)<\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

This investigation led to the discovery of 8 new vulnerabilities (see table above. Vulnerability CVE-2024-51977 allows a remote, unauthenticated attacker to sniff the serial number of the target device along with several other sensitive pieces of information. Knowledge of the serial number of a target device is required to exploit the authentication bypass vulnerability CVE-2024-51978.<\/p>\n

The authentication bypass vulnerability CVE-2024-51978 allows a remote, unauthenticated attacker to generate the default administrator password of the target device. The default password is generated during the manufacturing process by converting the device's unique serial number to the default password. CVE-2024-51977 allows an attacker to sniff a serial number via the HTTP, HTTPS and IPP services of the target device<\/p>\n

Numerous printer models affected<\/h2>\n

Some or all of these vulnerabilities affect 689 models in Brother's range of printers, scanners and label printers. In addition are:<\/p>\n