CVE-2025-8452

low-risk
Published 2025-08-12

By using the "uscan" protocol provided by the eSCL specification, an attacker can discover the serial number of multi-function printers that implement the Brother-provided firmware. This serial number can, in turn, can be leveraged by the flaw described by CVE-2024-51978 to calculate the default administrator password. This flaw is similar to CVE-2024-51977, with the only difference being the protocol by which an attacker can use to learn the remote device's serial number. The eSCL/uscan vector is typically only exposed on the local network. Any discovery service that implements the eSCL specification can be used to exploit this vulnerability, and one such implementation is the runZero Explorer. Changing the default administrator password will render this vulnerability virtually worthless, since the calculated default administrator password would no longer be the correct password.

Do I need to act?

-
0.02% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.3/10 Medium
ADJACENT_NETWORK / LOW complexity

References (5)

https://help.runzero.com/docs/installing-an-explorer/
https://support.brother.com/g/b/faqend.aspx?c=us&lang=en&prod=group2&faqid=faq00...
https://takeonme.org/gcves/GCVE-1337-2025-00000000000000000000000000000000000000...
https://www.cve.org/CVERecord?id=CVE-2024-51977
https://www.rapid7.com/blog/post/multiple-brother-devices-multiple-vulnerabiliti...
20
/ 100
low-risk
Severity 15/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal