CVE-2023-28369

Description

Brother iPrint&Scan V6.11.2 and earlier contains an improper access control vulnerability. This vulnerability may be exploited by the other app installed on the victim user's Android device, which may lead to displaying the settings and/or log information of the affected app as a print preview.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Affected products

Brother Industries, Ltd. / Brother iPrint&ScanV6.11.2 and earlier – V6.11.2 and earlier

References

MISChttps://support.brother.com/g/b/link.aspx?prod=group2&faqid=faq00100794_000
MISChttps://faq.brother.co.jp/app/answers/detail/a_id/13468
MISChttps://play.google.com/store/apps/details?id=com.brother.mfc.brprint
MISChttps://jvn.jp/en/vu/JVNVU97891206/