top of page
perceptive_background_267k.jpg

Brother BRAdmin Professional 3.75 contains an unquoted service path vulnerability in the BRA_Scheduler service that allows local users to potentially execute ar…

Published:

20 January 2026 at 23:00:00

Alert date:

21 January 2026 at 19:12:52

Source:

nvd.nist.gov

Click to open the original link from this advisory

Enterprise Applications, Operating Systems

Brother BRAdmin Professional 3.75 contains an unquoted service path vulnerability in the BRA_Scheduler service. The vulnerability allows local users to potentially execute arbitrary code by placing a malicious executable named 'BRAdmin' in the C:\Program Files (x86)\Brother\ directory. Successful exploitation grants attackers local system privileges on the affected system. This is a local privilege escalation vulnerability that requires existing access to the system but can lead to complete system compromise.

Technical details

Mitigation steps:

Affected products:

Brother BRAdmin Professional

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2021-47869
https://docs.unsafe-inline.com/0day/bradmin-professional-3.75-unquoted-service-path
https://global.brother/
https://support.brother.com/g/b/downloadend.aspx?c=us&lang=en&prod=hls7000dn_us_eu_as&os=10013&dlid=dlf005042_000&flang=4&type3=26
https://www.exploit-db.com/exploits/49671
https://www.vulncheck.com/advisories/bradmin-professional-brascheduler-unquoted-service-path

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page