CVE-2019-13192

CRITICAL

Brother Printers - Remote Code Execution via IPP Attribute Parsing

Title source: llm
STIX 2.1

Description

Some Brother printers (such as the HL-L8360CDW v1.20) were affected by a heap buffer overflow vulnerability as the IPP service did not parse attribute names properly. This would allow an attacker to execute arbitrary code on the device.

References (3)

Core 3

Scores

CVSS v3 9.8
EPSS 0.0373
EPSS Percentile 88.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (50)
brother/ads-2400n_firmware
brother/ads-2800w_firmware
brother/ads-3000n_firmware
brother/ads-3600w_firmware
brother/dcp-1610w_firmware
brother/dcp-1610we_firmware
brother/dcp-1610wr_firmware
brother/dcp-1610wvb_firmware
brother/dcp-1612w_firmware
brother/dcp-1612we_firmware
... and 40 more
Published Mar 13, 2020
Tracked Since Feb 18, 2026