Sensitive Information Exposure in Brother Printers and Multifunction Devices
CVE-2024-51977

5.3MEDIUM

Key Information:

Vendor: Brother Industries, Ltd
Status: Hl-l8260cdn; Hl-l8260cdw; Hl-l8360cdw; Hl-l8360cdwt
Vendor: CVE Published:; 25 June 2025

🔔 Create Brother Industries, Ltd Vulnerability Alert

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 39%📰 News Worthy

What is CVE-2024-51977?

An unauthenticated attacker can exploit a vulnerability in Brother Printers and Multifunction Devices by accessing the HTTP, HTTPS, or IPP services. By sending a GET request to the URI path /etc/mnt_info.csv, an attacker can retrieve a CSV file that contains sensitive data, including the device model, firmware version, IP address, and serial number. This exposure could lead to unauthorized access and further attacks on the network, highlighting the need for improved security measures.

Affected Version(s)

ADS-2400N 0

ADS-2800W 0

ADS-3000N 0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-51977 - Proof of Concept

News Articles

BleepingComputer

CVE-2024-51978 CVE-2024-51977

Brother printer bug in 689 models exposes default admin passwords

A total of 689 printer models from Brother, along with 53 other models from Fujifilm, Toshiba, and Konica Minolta, come with a default administrator password that remote attackers can generate. Even worse, there is no way to fix the flaw via firmware in existing printers.

CVE-2024-51978 CVE-2024-51977

Millions of Brother Printers Hit by Critical Unpatchable Bug

A slew of vulnerabilities, including a critical CVSS 9.8 that enables an attacker to generate the default admin password, affect hundreds of printer, scanner, and label-maker models made by manufacturer Brother.