CVE-2024-22475 Vulnerability Details

  /     /     /  

CVE-2024-22475 Metadata Quick Info

CVE Published: 18/03/2024 | CVE Updated: 27/10/2024 | CVE Year: 2024
Source: jpcert | Vendor: BROTHER INDUSTRIES, LTD. | Product: Multiple printers and scanners
Status : PUBLISHED

---

CVE-2024-22475 Description

Cross-site request forgery vulnerability in multiple printers and scanners which implement Web Based Management provided by BROTHER INDUSTRIES, LTD. allows a remote unauthenticated attacker to perform unintended operations on the affected product. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References].

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Cross-site request forgery (CSRF)
Source: BROTHER INDUSTRIES, LTD.

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).