Denial of Service Vulnerability in Brother Network Printers
CVE-2024-51982

7.5HIGH

Key Information:

Vendor: Brother Industries, Ltd
Status: Hl-l8260cdn; Hl-l8260cdw; Hl-l8360cdw; Hl-l8360cdwt
Vendor: CVE Published:; 25 June 2025

🔔 Create Brother Industries, Ltd Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2024-51982?

An unauthenticated remote attacker can exploit a vulnerability in Brother Network Printers by connecting to TCP port 9100. By issuing a specific Printer Job Language (PJL) command, the attacker can crash the device, forcing it to reboot. This process can be repeated, allowing for continuous disruption of service. The vulnerability arises from a malformed PJL variable, FORMLINES, being assigned a non-numeric value, which triggers the device crash.

Affected Version(s)

DCP-7090DW 0

DCP-7190DN 0

DCP-7190DW 0

References

https://support.brother.com/g/b/link.aspx?prod=group2&faq...

vendor-advisory

https://www.rapid7.com/blog/post/multiple-brother-devices...

third-party-advisory

https://assets.contentstack.io/v3/assets/blte4f029e766e6b...

technical-description

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jun 25, 2025
👾
Exploit known to exist
Jun 25, 2025
Vulnerability published
Jun 25, 2025
Vulnerability Reserved
Nov 4, 2024

Credit

Stephen Fewer, Principal Security Researcher at Rapid7