Vulnerabilities > Brother
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-26 | CVE-2023-51654 | Link Following vulnerability in Brother Iprint&Scan Improper link resolution before file access ('Link Following') issue exists in iPrint&Scan Desktop for Windows versions 11.0.0 and earlier. | 5.5 |
| 2023-07-11 | CVE-2023-29984 | NULL Pointer Dereference vulnerability in multiple products Null pointer dereference vulnerability exists in multiple vendors MFPs and printers which implement Debut web server 1.2 or 1.3. | 7.5 |
| 2023-05-18 | CVE-2023-28369 | Unspecified vulnerability in Brother Iprint&Scan Brother iPrint&Scan V6.11.2 and earlier contains an improper access control vulnerability. | 3.3 |
| 2020-03-13 | CVE-2019-13194 | Missing Authentication for Critical Function vulnerability in Brother products Some Brother printers (such as the HL-L8360CDW v1.20) were affected by different information disclosure vulnerabilities that provided sensitive information to an unauthenticated user who visits a specific URL. | 7.5 |
| 2020-03-13 | CVE-2019-13193 | Out-of-bounds Write vulnerability in Brother products Some Brother printers (such as the HL-L8360CDW v1.20) were affected by a stack buffer overflow vulnerability as the web server did not parse the cookie value properly. | 8.8 |
| 2020-03-13 | CVE-2019-13192 | Out-of-bounds Write vulnerability in Brother products Some Brother printers (such as the HL-L8360CDW v1.20) were affected by a heap buffer overflow vulnerability as the IPP service did not parse attribute names properly. | 9.8 |
| 2020-02-05 | CVE-2013-2675 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Brother Mfc-9970Cdw Firmware 1.10 Brother MFC-9970CDW 1.10 devices with Firmware L contain a Frameable response (Clickjacking) vulnerability which could allow remote attackers to obtain sensitive information. | 4.3 |
| 2020-02-04 | CVE-2013-2676 | Information Exposure vulnerability in Brother Mfc-9970Cdw Firmware 1.10 Brother MFC-9970CDW 1.10 firmware L devices contain an information disclosure vulnerability which allows remote attackers to view private IP addresses and other sensitive information. | 5.0 |
| 2020-02-03 | CVE-2013-2674 | Information Exposure vulnerability in Brother Mfc-9970Cdw Firmware 1.10 Brother MFC-9970CDW 1.10 firmware L devices contain an information disclosure vulnerability which allows remote attackers to view sensitive information from referrer logs due to inadequate handling of HTTP referrer headers. | 5.0 |
| 2020-02-03 | CVE-2013-2673 | Incorrect Authorization vulnerability in Brother Mfc-9970Cdw Firmware 1.10 Brother MFC-9970CDW 1.10 firmware L devices contain a security bypass vulnerability which allows physically proximate attackers to gain unauthorized access. | 4.6 |