Denial of service in Brother Industries products

Published: 2023-07-03

Risk	Medium
Patch available	YES
Number of vulnerabilities	1
CVE-ID	CVE-2023-29984
CWE-ID	CWE-476
Exploitation vector	Network
Public exploit	N/A
Vulnerable software Subscribe	MFC-T910DW Hardware solutions / Office equipment, IP-phones, print servers MFC-T810W(CHN) Hardware solutions / Office equipment, IP-phones, print servers MFC-T810W Hardware solutions / Office equipment, IP-phones, print servers MFC-J998DWN Hardware solutions / Office equipment, IP-phones, print servers MFC-J998DN Hardware solutions / Office equipment, IP-phones, print servers MFC-J898N Hardware solutions / Office equipment, IP-phones, print servers MFC-J895DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J893N Hardware solutions / Office equipment, IP-phones, print servers MFC-J890DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J738DWN Hardware solutions / Office equipment, IP-phones, print servers MFC-J738DN Hardware solutions / Office equipment, IP-phones, print servers MFC-J690DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5920DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5820DN Hardware solutions / Office equipment, IP-phones, print servers MFC-J5720DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5720CDW(JAPAN) Hardware solutions / Office equipment, IP-phones, print servers MFC-J5625DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5620DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5620CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5520DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5320DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J497DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J491DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J4725N Hardware solutions / Office equipment, IP-phones, print servers MFC-J4720N Hardware solutions / Office equipment, IP-phones, print servers MFC-J4625DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J4620DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J4520DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J4420DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J4320DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J2720 Hardware solutions / Office equipment, IP-phones, print servers MFC-J2320 Hardware solutions / Office equipment, IP-phones, print servers DCP-T710W(CHINA) Hardware solutions / Office equipment, IP-phones, print servers DCP-T710W Hardware solutions / Office equipment, IP-phones, print servers DCP-T510W(CHINA) Hardware solutions / Office equipment, IP-phones, print servers DCP-T510W Hardware solutions / Office equipment, IP-phones, print servers DCP-J987N-W Hardware solutions / Office equipment, IP-phones, print servers DCP-J987N-B Hardware solutions / Office equipment, IP-phones, print servers DCP-J978N-W Hardware solutions / Office equipment, IP-phones, print servers DCP-J978N-B Hardware solutions / Office equipment, IP-phones, print servers DCP-J973N-W Hardware solutions / Office equipment, IP-phones, print servers DCP-J973N-B Hardware solutions / Office equipment, IP-phones, print servers DCP-J972N Hardware solutions / Office equipment, IP-phones, print servers DCP-J774DW Hardware solutions / Office equipment, IP-phones, print servers DCP-J772DW Hardware solutions / Office equipment, IP-phones, print servers DCP-J587N Hardware solutions / Office equipment, IP-phones, print servers DCP-J577N Hardware solutions / Office equipment, IP-phones, print servers DCP-J572N Hardware solutions / Office equipment, IP-phones, print servers DCP-J572DW Hardware solutions / Office equipment, IP-phones, print servers DCP-J4225N-W Hardware solutions / Office equipment, IP-phones, print servers DCP-J4225N-B Hardware solutions / Office equipment, IP-phones, print servers DCP-J4220N-W Hardware solutions / Office equipment, IP-phones, print servers DCP-J4220N-B Hardware solutions / Office equipment, IP-phones, print servers DCP-J4120DW Hardware solutions / Office equipment, IP-phones, print servers DCP-7180DN Hardware solutions / Office equipment, IP-phones, print servers MFC-L9577CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-L9570CDW(JAPAN) Hardware solutions / Office equipment, IP-phones, print servers MFC-L9570CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-L8900CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-L8690CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-L8610CDW(JAPAN) Hardware solutions / Office equipment, IP-phones, print servers MFC-L8610CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-L2740DWR Hardware solutions / Office equipment, IP-phones, print servers MFC-L2740DW(JAPAN) Hardware solutions / Office equipment, IP-phones, print servers MFC-L2740DW Hardware solutions / Office equipment, IP-phones, print servers MFC-L2720DWR Hardware solutions / Office equipment, IP-phones, print servers MFC-L2720DW Hardware solutions / Office equipment, IP-phones, print servers MFC-L2720DN Hardware solutions / Office equipment, IP-phones, print servers MFC-L2707DW Hardware solutions / Office equipment, IP-phones, print servers MFC-L2705DW Hardware solutions / Office equipment, IP-phones, print servers MFC-L2703DW Hardware solutions / Office equipment, IP-phones, print servers MFC-L2701DW Hardware solutions / Office equipment, IP-phones, print servers MFC-L2700DWR Hardware solutions / Office equipment, IP-phones, print servers MFC-L2700DW Hardware solutions / Office equipment, IP-phones, print servers MFC-L2700DNR Hardware solutions / Office equipment, IP-phones, print servers MFC-L2700DN Hardware solutions / Office equipment, IP-phones, print servers MFC-L2685DW Hardware solutions / Office equipment, IP-phones, print servers MFC-L2680W Hardware solutions / Office equipment, IP-phones, print servers MFC-J997D(W)N Hardware solutions / Office equipment, IP-phones, print servers MFC-J990D(W)N Hardware solutions / Office equipment, IP-phones, print servers MFC-J985DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J907D(W)N Hardware solutions / Office equipment, IP-phones, print servers MFC-J900D(W)N Hardware solutions / Office equipment, IP-phones, print servers MFC-J887N Hardware solutions / Office equipment, IP-phones, print servers MFC-J885DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J880N Hardware solutions / Office equipment, IP-phones, print servers MFC-J880DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J837D(W)N Hardware solutions / Office equipment, IP-phones, print servers MFC-J830D(W)N Hardware solutions / Office equipment, IP-phones, print servers MFC-J775DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J737D(W)N Hardware solutions / Office equipment, IP-phones, print servers MFC-J730D(W)N Hardware solutions / Office equipment, IP-phones, print servers MFC-J6995CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-J6983CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-J6980CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-J6935DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J6930DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J680DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J6730DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J6583CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-J6580CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-J6535DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J6530DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5930DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5830DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5730DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5630CDW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5335DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J5330DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J485DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J480DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J460DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J3930DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J3530DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J2730DW Hardware solutions / Office equipment, IP-phones, print servers MFC-J2330DW Hardware solutions / Office equipment, IP-phones, print servers MFC-7880DN Hardware solutions / Office equipment, IP-phones, print servers MFC-1919NW Hardware solutions / Office equipment, IP-phones, print servers MFC-1916NW Hardware solutions / Office equipment, IP-phones, print servers MFC-1915W Hardware solutions / Office equipment, IP-phones, print servers MFC-1912WR Hardware solutions / Office equipment, IP-phones, print servers MFC-1911W Hardware solutions / Office equipment, IP-phones, print servers MFC-1911NW Hardware solutions / Office equipment, IP-phones, print servers MFC-1910WE Hardware solutions / Office equipment, IP-phones, print servers MFC-1910W Hardware solutions / Office equipment, IP-phones, print servers HL-L9310CDW Hardware solutions / Office equipment, IP-phones, print servers HL-L8360CDWT Hardware solutions / Office equipment, IP-phones, print servers HL-L8360CDW Hardware solutions / Office equipment, IP-phones, print servers HL-L8260CDW Hardware solutions / Office equipment, IP-phones, print servers HL-L8260CDN Hardware solutions / Office equipment, IP-phones, print servers HL-L2380DW Hardware solutions / Office equipment, IP-phones, print servers HL-L2366DW Hardware solutions / Office equipment, IP-phones, print servers HL-L2365DWR Hardware solutions / Office equipment, IP-phones, print servers HL-L2365DW Hardware solutions / Office equipment, IP-phones, print servers HL-L2361DN Hardware solutions / Office equipment, IP-phones, print servers HL-L2360DW Hardware solutions / Office equipment, IP-phones, print servers HL-L2360DNR Hardware solutions / Office equipment, IP-phones, print servers HL-L2360DN Hardware solutions / Office equipment, IP-phones, print servers HL-L2340DWR Hardware solutions / Office equipment, IP-phones, print servers HL-L2340DW Hardware solutions / Office equipment, IP-phones, print servers HL-L2315DW Hardware solutions / Office equipment, IP-phones, print servers HL-L2305W Hardware solutions / Office equipment, IP-phones, print servers HL-2560DN Hardware solutions / Office equipment, IP-phones, print servers HL-1223WR Hardware solutions / Office equipment, IP-phones, print servers HL-1223WE Hardware solutions / Office equipment, IP-phones, print servers HL-1222WE Hardware solutions / Office equipment, IP-phones, print servers HL-1218W Hardware solutions / Office equipment, IP-phones, print servers HL-1212WVB Hardware solutions / Office equipment, IP-phones, print servers HL-1212WR Hardware solutions / Office equipment, IP-phones, print servers HL-1212WE Hardware solutions / Office equipment, IP-phones, print servers HL-1212W Hardware solutions / Office equipment, IP-phones, print servers HL-1211W Hardware solutions / Office equipment, IP-phones, print servers HL-1210WVB Hardware solutions / Office equipment, IP-phones, print servers HL-1210WR Hardware solutions / Office equipment, IP-phones, print servers HL-1210WE Hardware solutions / Office equipment, IP-phones, print servers HL-1210W Hardware solutions / Office equipment, IP-phones, print servers FAX-L2700DN Hardware solutions / Office equipment, IP-phones, print servers DCP-L8410CDW Hardware solutions / Office equipment, IP-phones, print servers DCP-L2560DWR Hardware solutions / Office equipment, IP-phones, print servers DCP-L2560DW Hardware solutions / Office equipment, IP-phones, print servers DCP-L2541DW Hardware solutions / Office equipment, IP-phones, print servers DCP-L2540DW(JAPAN) Hardware solutions / Office equipment, IP-phones, print servers DCP-L2540DW Hardware solutions / Office equipment, IP-phones, print servers DCP-L2540DNR Hardware solutions / Office equipment, IP-phones, print servers DCP-L2540DN Hardware solutions / Office equipment, IP-phones, print servers DCP-L2520DWR Hardware solutions / Office equipment, IP-phones, print servers DCP-L2520DW Hardware solutions / Office equipment, IP-phones, print servers DCP-J983N Hardware solutions / Office equipment, IP-phones, print servers DCP-J968N-B Hardware solutions / Office equipment, IP-phones, print servers DCP-J968N-W Hardware solutions / Office equipment, IP-phones, print servers DCP-J963N-W Hardware solutions / Office equipment, IP-phones, print servers DCP-J963N-B Hardware solutions / Office equipment, IP-phones, print servers DCP-J962N Hardware solutions / Office equipment, IP-phones, print servers DCP-J785DW Hardware solutions / Office equipment, IP-phones, print servers DCP-J767N Hardware solutions / Office equipment, IP-phones, print servers DCP-J762N Hardware solutions / Office equipment, IP-phones, print servers DCP-J567N Hardware solutions / Office equipment, IP-phones, print servers DCP-J562N Hardware solutions / Office equipment, IP-phones, print servers DCP-J562DW Hardware solutions / Office equipment, IP-phones, print servers DCP-1623WR Hardware solutions / Office equipment, IP-phones, print servers DCP-1623WE Hardware solutions / Office equipment, IP-phones, print servers DCP-1622WE Hardware solutions / Office equipment, IP-phones, print servers DCP-1618W Hardware solutions / Office equipment, IP-phones, print servers DCP-1617NW Hardware solutions / Office equipment, IP-phones, print servers DCP-1616NW Hardware solutions / Office equipment, IP-phones, print servers DCP-1615NW Hardware solutions / Office equipment, IP-phones, print servers DCP-1612WVB Hardware solutions / Office equipment, IP-phones, print servers DCP-1612WR Hardware solutions / Office equipment, IP-phones, print servers DCP-1612WE Hardware solutions / Office equipment, IP-phones, print servers DCP-1612W Hardware solutions / Office equipment, IP-phones, print servers DCP-1610WVB Hardware solutions / Office equipment, IP-phones, print servers DCP-1610WR Hardware solutions / Office equipment, IP-phones, print servers DCP-1610WE Hardware solutions / Office equipment, IP-phones, print servers DCP-1610W Hardware solutions / Office equipment, IP-phones, print servers
Vendor	Brother Industries

Security Bulletin

This security bulletin contains one medium risk vulnerability.

1) NULL pointer dereference

EUVDB-ID: #VU77850

Risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-29984

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the Web Based Management. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

MFC-T910DW: All versions

MFC-T810W(CHN): All versions

MFC-T810W: All versions

MFC-J998DWN: All versions

MFC-J998DN: All versions

MFC-J898N: All versions

MFC-J895DW: All versions

MFC-J893N: All versions

MFC-J890DW: All versions

MFC-J738DWN: All versions

MFC-J738DN: All versions

MFC-J690DW: All versions

MFC-J5920DW: All versions

MFC-J5820DN: All versions

MFC-J5720DW: All versions

MFC-J5720CDW(JAPAN): All versions

MFC-J5625DW: All versions

MFC-J5620DW: All versions

MFC-J5620CDW: All versions

MFC-J5520DW: All versions

MFC-J5320DW: All versions

MFC-J497DW: All versions

MFC-J491DW: All versions

MFC-J4725N: All versions

MFC-J4720N: All versions

MFC-J4625DW: All versions

MFC-J4620DW: All versions

MFC-J4520DW: All versions

MFC-J4420DW: All versions

MFC-J4320DW: All versions

MFC-J2720: All versions

MFC-J2320: All versions

DCP-T710W(CHINA): All versions

DCP-T710W: All versions

DCP-T510W(CHINA): All versions

DCP-T510W: All versions

DCP-J987N-W: All versions

DCP-J987N-B: All versions

DCP-J978N-W: All versions

DCP-J978N-B: All versions

DCP-J973N-W: All versions

DCP-J973N-B: All versions

DCP-J972N: All versions

DCP-J774DW: All versions

DCP-J772DW: All versions

DCP-J587N: All versions

DCP-J577N: All versions

DCP-J572N: All versions

DCP-J572DW: All versions

DCP-J4225N-W: All versions

DCP-J4225N-B: All versions

DCP-J4220N-W: All versions

DCP-J4220N-B: All versions

DCP-J4120DW: All versions

DCP-7180DN: All versions

MFC-L9577CDW: before G

MFC-L9570CDW(JAPAN): before C

MFC-L9570CDW: before G

MFC-L8900CDW: before G

MFC-L8690CDW: before G

MFC-L8610CDW(JAPAN): before C

MFC-L8610CDW: before G

MFC-L2740DWR: before

MFC-L2740DW(JAPAN): before T

MFC-L2740DW: before

MFC-L2720DWR: before W

MFC-L2720DW: before W

MFC-L2720DN: before S

MFC-L2707DW: before

MFC-L2705DW: before

MFC-L2703DW: before

MFC-L2701DW: before

MFC-L2700DWR: before X

MFC-L2700DW: before X

MFC-L2700DNR: before X

MFC-L2700DN: before X

MFC-L2685DW: before X

MFC-L2680W: before X

MFC-J997D(W)N: before M

MFC-J990D(W)N: before M

MFC-J985DW: before P

MFC-J907D(W)N: before K

MFC-J900D(W)N: before K

MFC-J887N: before K

MFC-J885DW: before P

MFC-J880N: before K

MFC-J880DW: before P

MFC-J837D(W)N: before K

MFC-J830D(W)N: before K

MFC-J775DW: before P

MFC-J737D(W)N: before L

MFC-J730D(W)N: before L

MFC-J6995CDW: before S

MFC-J6983CDW: before M

MFC-J6980CDW: before S

MFC-J6935DW: before Z

MFC-J6930DW: before Z

MFC-J680DW: before K

MFC-J6730DW: before W

MFC-J6583CDW: before K

MFC-J6580CDW: before R

MFC-J6535DW: before Z

MFC-J6530DW: before W

MFC-J5930DW: before Y

MFC-J5830DW: before Y

MFC-J5730DW: before Y

MFC-J5630CDW: before L

MFC-J5335DW: before W

MFC-J5330DW: before W

MFC-J485DW: before P

MFC-J480DW: before P

MFC-J460DW: before P

MFC-J3930DW: before Z

MFC-J3530DW: before W

MFC-J2730DW: before Y

MFC-J2330DW: before W

MFC-7880DN: before Q

MFC-1919NW: before P

MFC-1916NW: before T

MFC-1915W: before T

MFC-1912WR: before T

MFC-1911W: before T

MFC-1911NW: before T

MFC-1910WE: before T

MFC-1910W: before T

HL-L9310CDW: before 1.20

HL-L8360CDWT: before 1.20

HL-L8360CDW: before 1.20

HL-L8260CDW: before 1.15

HL-L8260CDN: before 1.15

HL-L2380DW: before

HL-L2366DW: before 1.35

HL-L2365DWR: before 1.35

HL-L2365DW: before 1.35

HL-L2361DN: before 1.35

HL-L2360DW: before 1.35

HL-L2360DNR: before 1.35

HL-L2360DN: before 1.35

HL-L2340DWR: before 1.26

HL-L2340DW: before 1.26

HL-L2315DW: before 1.24

HL-L2305W: before 1.24

HL-2560DN: before 1.35

HL-1223WR: before 1.20

HL-1223WE: before 1.20

HL-1222WE: before 1.20

HL-1218W: before 1.20

HL-1212WVB: before 1.20

HL-1212WR: before 1.20

HL-1212WE: before 1.20

HL-1212W: before 1.20

HL-1211W: before 1.20

HL-1210WVB: before 1.20

HL-1210WR: before 1.20

HL-1210WE: before 1.20

HL-1210W: before 1.20

FAX-L2700DN: before Q

DCP-L8410CDW: before G

DCP-L2560DWR: before W

DCP-L2560DW: before W

DCP-L2541DW: before X

DCP-L2540DW(JAPAN): before S

DCP-L2540DW: before X

DCP-L2540DNR: before X

DCP-L2540DN: before X

DCP-L2520DWR: before W

DCP-L2520DW: before W

DCP-J983N: before P

DCP-J968N-B: before P

DCP-J968N-W: before P

DCP-J963N-W: before P

DCP-J963N-B: before P

DCP-J962N: before P

DCP-J785DW: before G

DCP-J767N: before P

DCP-J762N: before P

DCP-J567N: before K

DCP-J562N: before K

DCP-J562DW: before L

DCP-1623WR: before P

DCP-1623WE: before Z

DCP-1622WE: before Z

DCP-1618W: before P

DCP-1617NW: before R

DCP-1616NW: before R

DCP-1615NW: before R

DCP-1612WVB: before Z

DCP-1612WR: before Z

DCP-1612WE: before Z

DCP-1612W: before Z

DCP-1610WVB: before Z

DCP-1610WR: before Z

DCP-1610WE: before Z

DCP-1610W: before Z

External links

http://jvn.jp/en/vu/JVNVU93767756/index.html
http://support.brother.com/g/s/id/security/CVE-2023-29984_modellist.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.