The vulnerability in the web interface for controlling network devices from Fujitsu Si-R 30B, Si-R 130B, Si-R 90brin, Si-R570B, Si-R370B, Si-R220D, Si-R G100, Si-R G200, Si-R G100B, Si-R G110B, Si-R G200B, Si-R G210, Si-R G211, Si-R G120, Si-R G121, and SR-M 50AP1 allows a perpetrator to bypass the authentication process.

🗓️ 12 Mar 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 3 Views

Vulnerability in Fujitsu Si-R and SR-M web interfaces allows remote authentication bypass on multiple models.

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2023-38555	26 Jul 202312:28	–	circl
CNNVD	Fujitsu network devices Si-R series 授权问题漏洞	26 Jul 202300:00	–	cnnvd
CVE	CVE-2023-38555	26 Jul 202307:43	–	cve
Cvelist	CVE-2023-38555	26 Jul 202307:43	–	cvelist
EUVD	EUVD-2023-42354	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	Fujitsu network devices Si-R series and SR-M series vulnerable to authentication bypass	27 Jul 202309:12	–	jvn
NVD	CVE-2023-38555	26 Jul 202308:15	–	nvd
OSV	CVE-2023-38555	26 Jul 202308:15	–	osv
Prion	Authentication flaw	26 Jul 202308:15	–	prion
Positive Technologies	PT-2023-8778 · Fujitsu · Fujitsu Sr-M 50Ap1 +13	26 Jul 202300:00	–	ptsecurity

Vulners

Node

fujitsu si-r_g100Range<02.55

OR

fujitsu si-r_g200Range<02.55

OR

fujitsu si-r_g100bRange<04.13

OR

fujitsu si-r_g110bRange<04.13

OR

fujitsu si-r_g200bRange<04.13

OR

fujitsu si-r_g210Range<20.53

OR

fujitsu si-r_g211Range<20.53

OR

fujitsu si-r_g120Range<20.53

OR

fujitsu si-r_g121Range<20.53

Source	Link
fujitsu	www.fujitsu.com/jp/products/network/support/2023/fjlan-01/
jvn	www.jvn.jp/en/vu/JVNVU96643580/
vuldb	www.vuldb.com/
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2023072611
web	www.web.nvd.nist.gov/view/vuln/detail

12 Mar 2024 00:00Current

6.9Medium risk

Vulners AI Score6.9

CVSS 28.3

CVSS 38.8

EPSS0.00332

Fujitsu devices web interface authentication bypass remote access Si-R models SR-M models