Brother Industries is currently facing a severe authentication bypass vulnerability in its printers, affecting hundreds of different models predominantly used in enterprises. Discovered by Rapid7, this vulnerability allows unauthorized remote code execution when exploited in combination with an additional flaw associated with the devices' serial numbers. The critical issue arises from a factory setting procedure, which hardcodes admin passwords based on unique serial numbers. Other vulnerabilities identified include information leaks and a high-severity buffer overflow, further complicating the issue and raising significant security concerns.
Brother Industries is facing a severe authentication bypass vulnerability in hundreds of printer models that allows remote code execution when combined with other flaws.
This vulnerability is critical, rated CVSS 9.8 out of 10, enabling attackers to derive default admin passwords using a device's unique serial number.
Collection
[
|
...
]