{"cve":{"cve_id":"CVE-2025-49797","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00147,"epss_percentile":0.04293,"epss_as_of":"2026-06-23","description":"Multiple Brother driver installers for Windows contain a privilege escalation vulnerability. If exploited, an arbitrary program may be executed with the administrative privilege. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References].","published_at":"2025-06-25T09:25:53.381000Z","last_modified_at":null,"cvss_v3_score":7.8,"cvss_v3_vector":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":8.5,"cvss_v4_vector":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N","cvss_v4_severity":"HIGH","ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-552"],"nvd_references":["https://support.brother.com/g/s/security/","https://www.toshibatec.com/information/20250625_01.html","https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2025-000009","https://jvn.jp/en/vu/JVNVU91819309/"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:27:20.127572Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":"4.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"AT","name":"Attack Requirements","value":"N","value_label":"None"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"VC","name":"Confidentiality (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VI","name":"Integrity (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VA","name":"Availability (Vulnerable System)","value":"H","value_label":"High"},{"metric":"SC","name":"Confidentiality (Subsequent System)","value":"N","value_label":"None"},{"metric":"SI","name":"Integrity (Subsequent System)","value":"N","value_label":"None"},{"metric":"SA","name":"Availability (Subsequent System)","value":"N","value_label":"None"}]},"affected":[{"vendor_slug":"brother-industries-ltd.","vendor_name":"Brother Industries, Ltd.","product_slug":"multiple-driver-installers-for-windows","product_name":"Multiple driver installers for Windows","version_start":"see the information provided by the vendor","version_start_inclusive":true,"version_end":"see the information provided by the vendor","version_end_inclusive":true,"cpe23_uri":"cve5:brother-industries-ltd.:multiple-driver-installers-for-windows:see the information provided by the vendor:see the information provided by the vendor"},{"vendor_slug":"ricoh-company-ltd.","vendor_name":"Ricoh Company, Ltd.","product_slug":"multiple-driver-installers-for-windows","product_name":"Multiple driver installers for Windows","version_start":"see the information provided by the vendor","version_start_inclusive":true,"version_end":"see the information provided by the vendor","version_end_inclusive":true,"cpe23_uri":"cve5:ricoh-company-ltd.:multiple-driver-installers-for-windows:see the information provided by the vendor:see the information provided by the vendor"},{"vendor_slug":"toshiba-tec-corporation","vendor_name":"Toshiba Tec Corporation","product_slug":"multiple-driver-installers-for-windows","product_name":"Multiple driver installers for Windows","version_start":"see the information provided by the vendor","version_start_inclusive":true,"version_end":"see the information provided by the vendor","version_end_inclusive":true,"cpe23_uri":"cve5:toshiba-tec-corporation:multiple-driver-installers-for-windows:see the information provided by the vendor:see the information provided by the vendor"}],"exploit_refs":[],"news":[],"references":[{"url":"https://support.brother.com/g/s/security/","source_type":"MISC","tags":[]},{"url":"https://www.toshibatec.com/information/20250625_01.html","source_type":"MISC","tags":[]},{"url":"https://www.ricoh.com/products/security/vulnerabilities/vul?id=ricoh-2025-000009","source_type":"MISC","tags":[]},{"url":"https://jvn.jp/en/vu/JVNVU91819309/","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2025-06-25T09:25:53.381000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:47:12.413582Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:47:12.413582Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:47:12.413582Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:47:12.413582Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:47:12.413582Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:47:12.413582Z","label":"CVSS score revised","source":"cvelistv5"}]}