Three vulnerabilities in Brother printers: from SNMP to unauthenticated RCE on device. π¨οΈπ οΈπ¨π»βπ»ππ¦βπ₯
Security researchers Nguyen Dang Nguyen, Manzel Seet, and Amos Ng presented their hardware research on the SOHO (Small Office/Home Office) printer Brother MFC-J1010DW.
During their research, they identified three vulnerabilities that can be chained together to achieve unauthenticated RCE on the device:
1οΈβ£ SNMP Authentication Bypass - Retrieve the printerβs serial number without authentication, letting attackers derive the default admin password.
2οΈβ£ Unauthenticated Firmware Rollback - Downgrade the device to vulnerable firmware over the network, no credentials required.
3οΈβ£ Referrer Header Buffer Overflow - Trigger arbitrary code execution using a crafted malicious HTTP header.
Interesting - and potentially relevant not only to your security team but also to your CISOβs office. So please share!
More details:
Breaking Into a Brother (MFC-J1010DW): Three Security Flaws in a Seemingly Innocent Printer [Blog] https://starlabs.sg/blog/2025/11-breaking-into-a-brother-mfc-j1010dw/
