A whole bunch of printer fashions from Brother and different distributors are impacted by probably critical vulnerabilities found by researchers at Rapid7.
The cybersecurity agency revealed on Wednesday that its researchers recognized eight vulnerabilities affecting multifunction printers made by Brother.
The safety holes have been discovered to affect 689 printer, scanner and label maker fashions from Brother, and a few or the entire flaws additionally have an effect on 46 Fujifilm Enterprise Innovation, 5 Ricoh, six Konica Minolta, and two Toshiba printers.
Total, hundreds of thousands of enterprise and residential printers are believed to be uncovered to hacker assaults attributable to these vulnerabilities.
Probably the most critical of the failings, tracked as CVE-2024-51978 and with a severity ranking of ‘crucial’, can permit a distant and unauthenticated attacker to bypass authentication by acquiring the machine’s default administrator password.
CVE-2024-51978 could be chained with an info disclosure vulnerability tracked as CVE-2024-51977, which could be exploited to acquire a tool’s serial quantity. This serial quantity is required to generate the default admin password.
“That is because of the discovery of the default password era process utilized by Brother units,” Rapid7 defined. “This process transforms a serial quantity right into a default password. Affected units have their default password set, based mostly on every machine’s distinctive serial quantity, in the course of the manufacturing course of.”
Having the admin password permits an attacker to reconfigure the machine or abuse performance supposed for authenticated customers. Commercial. Scroll to proceed studying.
The remaining vulnerabilities, which have severity scores of ‘medium’ and ‘excessive’, could be exploited for DoS assaults, forcing the printer to open a TCP connection, acquire the password of a configured exterior service, set off a stack overflow, and carry out arbitrary HTTP requests. Six of the eight vulnerabilities discovered by Rapid7 could be exploited with out authentication.
The cybersecurity firm reported its findings to Brother roughly one 12 months in the past by way of Japan’s JPCERT/CC, and the seller has launched advisories to tell prospects about these vulnerabilities.
Brother has patched many of the flaws, however stated CVE-2024-51978 can’t be absolutely patched within the firmware. A brand new manufacturing course of will be sure that future units should not weak. For current units, a workaround is on the market.
Advisories have additionally been revealed by JPCERT/CC, Ricoh, Fujifilm, Toshiba, and Konica Minolta.
*up to date with hyperlinks to vendor advisories
Associated: Xerox Versalink Printer Vulnerabilities Allow Lateral Motion
Associated: Printer Firm Procolored Served Contaminated Software program for Months
Associated: Essential Vulnerability Present in Canon Printer Drivers
