CVE-2024-51978

Name of the Vulnerable Software and Affected Versions: Brother printers (affected versions not specified) Fujifilm printers (affected versions not specified) Ricoh printers (affected versions not specified) Konica Minolta printers (affected versions not specified) Toshiba printers (affected versions not specified)

Description: An unauthenticated attacker who knows the target device's serial number can generate the default administrator password for the device. This allows attackers to bypass authentication and potentially gain remote access to the printer. The flaw affects hundreds of printer models from multiple vendors, including Brother, Fujifilm, Ricoh, Konica Minolta, and Toshiba. A critical flaw, identified as CVE-2024-51978, is rated 9.8 in severity and allows attackers to generate default admin passwords using device serial numbers. This vulnerability cannot be patched in some cases.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.