JVNVU#91819309
Multiple Brother driver installers for Windows vulnerable to privilege escalation
Overview
Multiple Brother driver installers for Windows contain a vulnerability which allows privilege escalation.
Products Affected
A wide range of products are affected.
As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors in [Vendor Status].
Description
Multiple Brother driver installers for Windows contain the following vulnerability.
- Files or directories accessible to external parties (CWE-552)
- CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Base Score 8.5
- CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Base Score 7.8
- CVE-2025-49797
Impact
An arbitrary program may be executed with the administrative privilege.
Solution
Re-run the installer
Execute the latest version of the installer according to the information provided by the respective vendors in [Vendor Status].
You need to execute the installer again even if the driver has already been installed, because the related files installed in the system should be updated.
Vendor Status
| Vendor | Status | Last Update | Vendor Notes |
|---|---|---|---|
| Brother Industries, Ltd. | Vulnerable | 2025年06月25日 | Brother Industries, Ltd. website |
| Ricoh Company, Ltd. | Vulnerable | 2025年08月18日 | Ricoh Company, Ltd. website |
| Toshiba Tec Corporation | Vulnerable | 2025年06月25日 | Toshiba Tec Corporation website |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
Credit
Julian Horoszkiewicz of Eviden reported this vulnerability to the developer.
JPCERT/CC coordinated between the reporter and the developer.
Other Information
Update History
- 2025年08月18日
- Ricoh Company, Ltd. update status