Shodan
Vulnerabilities
Vulnerable Software
Brother:  >> Mfc-9970cdw  Security Vulnerabilities
CVE-2013-2675
Brother MFC-9970CDW 1.10 devices with Firmware L contain a Frameable response (Clickjacking) vulnerability which could allow remote attackers to obtain sensitive information.
CVSS Score
6.5
EPSS Score
0.021
Published
2020-02-05
CVE-2013-2676
Brother MFC-9970CDW 1.10 firmware L devices contain an information disclosure vulnerability which allows remote attackers to view private IP addresses and other sensitive information.
CVSS Score
7.5
EPSS Score
0.019
Published
2020-02-04
CVE-2013-2674
Brother MFC-9970CDW 1.10 firmware L devices contain an information disclosure vulnerability which allows remote attackers to view sensitive information from referrer logs due to inadequate handling of HTTP referrer headers.
CVSS Score
7.5
EPSS Score
0.023
Published
2020-02-03
CVE-2013-2673
Brother MFC-9970CDW 1.10 firmware L devices contain a security bypass vulnerability which allows physically proximate attackers to gain unauthorized access.
CVSS Score
6.8
EPSS Score
0.001
Published
2020-02-03
CVE-2013-2672
Brother MFC-9970CDW devices with firmware 0D allow cleartext submission of passwords.
CVSS Score
7.5
EPSS Score
0.007
Published
2020-02-03
CVE-2013-2507
Multiple cross-site scripting (XSS) vulnerabilities in the Brother MFC-9970CDW printer with firmware G (1.03) allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to admin/log_to_net.html or (2) kind parameter to fax/copy_settings.html, a different vulnerability than CVE-2013-2670 and CVE-2013-2671.
CVSS Score
4.3
EPSS Score
0.004
Published
2014-03-14
CVE-2013-2670
Cross-site scripting (XSS) vulnerability in the Brother MFC-9970CDW printer with firmware G (1.03) and L (1.10) allows remote attackers to inject arbitrary web script or HTML via an arbitrary parameter name (QUERY_STRING) to admin/admin_main.html, a different vulnerability than CVE-2013-2507 and CVE-2013-2671.
CVSS Score
4.3
EPSS Score
0.006
Published
2014-03-14
CVE-2013-2671
Multiple cross-site scripting (XSS) vulnerabilities in the Brother MFC-9970CDW printer with firmware L (1.10) allow remote attackers to inject arbitrary web script or HTML via the (1) id or (2) val parameter to admin/admin_main.html; (3) id, (4) val, or (5) arbitrary parameter name (QUERY_STRING) to admin/profile_settings_net.html; or (6) kind or (7) arbitrary parameter name (QUERY_STRING) to fax/general_setup.html, a different vulnerability than CVE-2013-2507 and CVE-2013-2670.
CVSS Score
4.3
EPSS Score
0.005
Published
2014-03-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved