Privilege Escalation Vulnerability in Brother Driver Installers for Windows
CVE-2025-49797

8.5HIGH

Key Information:

Vendor: Brother Industries, Ltd.
Status: Multiple Driver Installers For Windows
Vendor: CVE Published:; 25 June 2025

🔔 Create Brother Industries, Ltd. Vulnerability Alert

What is CVE-2025-49797?

Multiple installer packages for Brother drivers intended for Windows contain a vulnerability that enables privilege escalation. This flaw may allow an attacker to execute arbitrary programs with administrative privileges, posing a significant security risk to systems using these drivers. Users are encouraged to review the affected versions and consider applying updates or patches as provided by Brother to mitigate potential exploitation.

Affected Version(s)

Multiple driver installers for Windows see the information provided by the vendor

References

https://support.brother.com/g/s/security/

https://www.toshibatec.com/information/20250625_01.html

https://jvn.jp/en/vu/JVNVU91819309/

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

CVSS V3.0

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 25, 2025
Vulnerability Reserved
Jun 11, 2025