module
Multiple Brother devices authentication bypass via default administrator password generation
| Disclosed |
|---|
| Jun 25, 2025 |
Disclosed
Jun 25, 2025
Description
By leaking a target devices serial number, a remote attacker can generate the target devices default
administrator password. The target device may leak its serial number via unauthenticated HTTP, HTTPS, IPP,
SNMP, or PJL requests.
administrator password. The target device may leak its serial number via unauthenticated HTTP, HTTPS, IPP,
SNMP, or PJL requests.
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.