Cross-Site Scripting Vulnerability in Brother MFC-9970CDW Printers
CVE-2013-2672

7.5HIGH

Key Information:

Vendor: Brother
Status: Mfc-9970cdw Firmware
Vendor: CVE Published:; 3 February 2020

What is CVE-2013-2672?

A vulnerability in Brother MFC-9970CDW printers running firmware version 0D allows attackers to intercept and exploit cleartext submission of passwords. This security flaw can lead to unauthorized access and compromise sensitive information, making it essential for users to update their firmware to mitigate potential risks. Awareness and timely action are crucial in ensuring printer security against such vulnerabilities.

References

http://packetstormsecurity.com/files/121553/Brother-MFC-9...

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/84094

vdb-entryx_refsource_XF

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 3, 2020
Vulnerability Reserved
Mar 22, 2013

CVE-2013-2672 Data

JSON