Server-Side Request Forgery Vulnerability in Brother Devices
CVE-2024-51980

5.3MEDIUM

Key Information:

Vendor

Brother Industries, Ltd

Status
Hl-l8260cdn
Hl-l8260cdw
Hl-l8360cdw
Hl-l8360cdwt
Vendor
CVE Published:
25 June 2025

Badges

👾 Exploit Exists

What is CVE-2024-51980?

An unauthenticated attacker could exploit a specific functionality within Brother Multi-Function Devices to execute a limited server-side request forgery (SSRF). This vulnerability allows the attacker to manipulate the device into opening a TCP connection to a malicious IP address on any port, specifically when the WS-Addressing ReplyTo element is used in a SOAP request. While the attacker cannot control the data sent through the connection or receive any response, this vulnerability effectively facilitates internal TCP port scanning, potentially exposing sensitive configurations and network architecture.

Affected Version(s)

ADS-2400N 0

ADS-2800W 0

ADS-3000N 0

References

https://support.brother.com/g/b/link.aspx?prod=group2&faq...
vendor-advisory
https://support.brother.com/g/b/link.aspx?prod=group2&faq...
vendor-advisory
https://support.brother.com/g/b/link.aspx?prod=lmgroup1&f...
vendor-advisory

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Stephen Fewer, Principal Security Researcher at Rapid7
.
CVE-2024-51980 : Server-Side Request Forgery Vulnerability in Brother Devices