CVE-2024-51982
HIGHBrother Printer Devices - Denial of Service via Malformed PJL Command
Title source: llmDescription
An unauthenticated attacker who can connect to TCP port 9100 can issue a Printer Job Language (PJL) command that will crash the target device. The device will reboot, after which the attacker can reissue the command to repeatedly crash the device. A malformed PJL variable FORMLINES is set to a non number value causing the target to crash.
References (6)
Core 6
Core References
Various Sources vendor-advisory
https://support.brother.com/g/b/link.aspx?prod=group2&faqid=faq00100846_000
Various Sources vendor-advisory
https://www.fujifilm.com/fbglobal/eng/company/news/notice/2025/0625_announce.html
Various Sources vendor-advisory
https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2025-000007
Third Party Advisory third-party-advisory
https://www.rapid7.com/blog/post/multiple-brother-devices-multiple-vulnerabilities-fixed
Various Sources technical-description
https://assets.contentstack.io/v3/assets/blte4f029e766e6b253/blt6495b3c6adf2867f/685aa980a26c5e2b1026969c/vulnerability-disclosure-whitepaper.pdf
Scores
CVSS v3
7.5
EPSS
0.0679
EPSS Percentile
93.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-1286
Status
published
Products (50)
Brother Industries, Ltd/ADS-2400N
A - T
Brother Industries, Ltd/ADS-2800W
A - T
Brother Industries, Ltd/ADS-3000N
A - T
Brother Industries, Ltd/ADS-3600W
A - T
Brother Industries, Ltd/DCP-7090DW
< M
Brother Industries, Ltd/DCP-7190DN
< V
Brother Industries, Ltd/DCP-7190DW
< M
Brother Industries, Ltd/DCP-7195DW
< R
Brother Industries, Ltd/DCP-9030CDN
< ZE
Brother Industries, Ltd/DCP-B7520DW
< V
... and 40 more
Published
Jun 25, 2025
Tracked Since
Feb 18, 2026