Brother Printer Security Flaw: Unpatchable Vulnerability
- Security vulnerabilities in hundreds of Brother printer models could allow unauthorized remote access,notably on devices still using default passwords.
- The vulnerabilities also affect 59 printer models from Fujifilm, Toshiba, Ricoh, and Konica Minolta, though not every model is impacted by each specific flaw.Users can check if their...
- The most critical flaw, identified as CVE-2024-51978 with a severity score of 9.8, enables attackers to generate a device's default administrator password if thay know the printer's serial...
Hundreds of Brother printer models face critical security flaws,risking unauthorized remote access. Attackers can generate default administrator passwords,opening the door to sensitive data breaches and device control. The unpatchable vulnerability,CVE-2024-51978,affects a wide range of printers; users must immediately change default admin passwords. Firmware updates can fix seven of the eight vulnerabilities.These findings, brought to the public by News Directory 3, highlight a major threat to printer security, impacting various manufacturers beyond Brother. This is a serious issue; act now to protect your network. discover what’s next and the steps you can take.
Brother Printer Security Flaws Expose Networks to Risks
Security vulnerabilities in hundreds of Brother printer models could allow unauthorized remote access,notably on devices still using default passwords. Security firm Rapid7 discovered eight new flaws across 689 brother printer models for both home and enterprise use.
The vulnerabilities also affect 59 printer models from Fujifilm, Toshiba, Ricoh, and Konica Minolta, though not every model is impacted by each specific flaw.Users can check if their Brother printer model is affected.
The most critical flaw, identified as CVE-2024-51978 with a severity score of 9.8, enables attackers to generate a device’s default administrator password if thay know the printer’s serial number. This access allows exploitation of the other seven vulnerabilities, including sensitive data retrieval, device crashes, unauthorized TCP connections, arbitrary HTTP requests, and exposure of passwords for connected network services. This poses a significant printer security threat.
While seven of the vulnerabilities can be addressed through firmware updates, Brother has stated that CVE-2024-51978 “cannot be fully remediated in firmware.” The company plans to implement a fix in the manufacturing process for future printer models. For current models, Brother advises users to change the default admin password through the device’s Web-Based Management menu. This is a crucial step in maintaining network printer security.
Changing default passwords on new devices is a recommended security practice,and these printer vulnerabilities highlight the importance of this step.
What’s next
Users of affected Brother and other printer brands should promptly check for firmware updates and change default passwords to mitigate potential risks. Regularly monitoring for security patches is essential for maintaining a secure network environment.
