CVE-2025-53869

EUVD-2025-206522
Multiple MFPs provided by Brother Industries, Ltd. does not properly validate server certificates, which may allow a man-in-the-middle attacker to replace the set of root certificates used by the product with a set of arbitrary certificates.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.7 LOW
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
jpcertCNA
3.7 LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Common Weakness Enumeration
References
https://faq.brother.co.jp/app/answers/detail/a_id/13716
https://jvn.jp/en/vu/JVNVU92878805/
https://www.konicaminolta.com/global-en/security/advisory/pdf/km-2026-0001.pdf
https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2026-000001