What is CVE-2023-38433?

CVE-2023-38433 is a vulnerability in Fujitsu Limited Ip-90. Published 2023-07-26.

Is CVE-2023-38433 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Fujitsu Limited Ip-90

CVE-2023-38433

Fujitsu Real-time Video Transmission Gear "IP series" use hard-coded credentials, which may allow a remote unauthenticated attacker to initialize or reboot the products, and as a result, terminate the video transmission. Affected products…

EPSS: 0.532 (98.0th percentile) — read the EPSS interpretation.

Affected products

Fujitsu Limited Ip-90 — versions firmware versions V01L001 to V01L013
Fujitsu Limited Ip-900d / Ip-900ⅱd Ip-920d — versions firmware versions V01L001 to V02L061
Fujitsu Limited Ip-900e / Ip-920e — versions firmware versions V01L001 to V02L061
Fujitsu Limited Ip-9610 — versions firmware versions V01L001 to V02L007
Fujitsu Limited Ip-he900d — versions firmware versions V01L001 to V01L004
Fujitsu Limited Ip-he900e — versions firmware versions V01L001 to V01L010
Fujitsu Limited Ip-he950d — versions firmware versions V01L001 to V01L053
Fujitsu Limited Ip-he950e — versions firmware versions V01L001 to V01L053

Public proof-of-concept exploits

komodoooo/Some-things

References

Frequently asked questions

What is CVE-2023-38433?: CVE-2023-38433 is a vulnerability in Fujitsu Limited Ip-90. Published 2023-07-26.
Is CVE-2023-38433 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.