CVE-2023-38555

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jul 26, 2023
Updated: Aug 3, 2023
CWE ID 287

Summary

CVE-2023-38555 is an authentication bypass vulnerability affecting Fujitsu network devices Si-R series and SR-M series. This issue enables network-adjacent, unauthenticated attackers to manipulate configuration settings, including obtaining, changing, or resetting them. Affected products and versions include Si-R 30B, Si-R 130B, Si-R 90brin, Si-R570B, Si-R370B, Si-R220D, Si-R G100, Si-R G200, Si-R G100B, Si-R G110B, Si-R G200B, Si-R G210, Si-R G211, Si-R G120, and Si-R G121. Additionally, SR-M 50AP1 is also affected. This vulnerability represents a significant security risk and requires urgent attention from device administrators to apply the available patches.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share