CVE-2023-38433

Published: Jul 26, 2023

Modified: Oct 23, 2024

PUBLISHED

Description

Fujitsu Real-time Video Transmission Gear "IP series" use hard-coded credentials, which may allow a remote unauthenticated attacker to initialize or reboot the products, and as a result, terminate the video transmission. Affected products and versions are as follows: IP-HE950E firmware versions V01L001 to V01L053, IP-HE950D firmware versions V01L001 to V01L053, IP-HE900E firmware versions V01L001 to V01L010, IP-HE900D firmware versions V01L001 to V01L004, IP-900E / IP-920E firmware versions V01L001 to V02L061, IP-900D / IP-900ⅡD / IP-920D firmware versions V01L001 to V02L061, IP-90 firmware versions V01L001 to V01L013, and IP-9610 firmware versions V01L001 to V02L007.

Vendor	Product	Versions
Fujitsu Limited	IP-HE950E	affected `firmware versions V01L001 to V01L053`
Fujitsu Limited	IP-HE950D	affected `firmware versions V01L001 to V01L053`
Fujitsu Limited	IP-HE900E	affected `firmware versions V01L001 to V01L010`
Fujitsu Limited	IP-HE900D	affected `firmware versions V01L001 to V01L004`
Fujitsu Limited	IP-900E / IP-920E	affected `firmware versions V01L001 to V02L061`
Fujitsu Limited	IP-900D / IP-900ⅡD / IP-920D	affected `firmware versions V01L001 to V02L061`
Fujitsu Limited	IP-90	affected `firmware versions V01L001 to V01L013`
Fujitsu Limited	IP-9610	affected `firmware versions V01L001 to V02L007`

References

https://www.fujitsu.com/global/products/computing/peripheral/video/download/

https://jvn.jp/en/jp/JVN95727578/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-38433

Description

Affected Products

References