CVE-2023-38555

🗓️ 26 Jul 2023 07:43:21Reported by jpcertType

CVE-2023-38555 allows unauthenticated attackers to change settings on Fujitsu Si-R and SR-M devices.

Reporter	Title	Published	Views	Family All 12
BDU FSTEC	The vulnerability in the web interface for controlling network devices from Fujitsu Si-R 30B, Si-R 130B, Si-R 90brin, Si-R570B, Si-R370B, Si-R220D, Si-R G100, Si-R G200, Si-R G100B, Si-R G110B, Si-R G200B, Si-R G210, Si-R G211, Si-R G120, Si-R G121, and SR-M 50AP1 allows a perpetrator to bypass the authentication process.	12 Mar 202400:00	–	bdu_fstec
Circl	CVE-2023-38555	26 Jul 202312:28	–	circl
CNNVD	Fujitsu network devices Si-R series 授权问题漏洞	26 Jul 202300:00	–	cnnvd
Cvelist	CVE-2023-38555	26 Jul 202307:43	–	cvelist
EUVD	EUVD-2023-42354	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	Fujitsu network devices Si-R series and SR-M series vulnerable to authentication bypass	27 Jul 202309:12	–	jvn
NVD	CVE-2023-38555	26 Jul 202308:15	–	nvd
OSV	CVE-2023-38555	26 Jul 202308:15	–	osv
Prion	Authentication flaw	26 Jul 202308:15	–	prion
Positive Technologies	PT-2023-8778 · Fujitsu · Fujitsu Sr-M 50Ap1 +13	26 Jul 202300:00	–	ptsecurity

NVD

Vulners

Node

fujitsu si-r_30b_firmware

AND

fujitsu si-r_30bMatch-

Node

fujitsu si-r_130b_firmware

AND

fujitsu si-r_130bMatch-

Node

fujitsu si-r_90brin_firmware

AND

fujitsu si-r_90brinMatch-

Node

fujitsu si-r570b_firmware

AND

fujitsu si-r570bMatch-

Node

fujitsu si-r370b_firmware

AND

fujitsu si-r370bMatch-

Node

fujitsu si-r220d_firmware

AND

fujitsu si-r220dMatch-

Node

fujitsu si-r_g100_firmwareRange≤02.54

AND

fujitsu si-r_g100Match-

Node

fujitsu si-r_g200_firmwareRange≤02.54

AND

fujitsu si-r_g200Match-

Node

fujitsu si-r_g100b_firmwareRange≤04.12

AND

fujitsu si-r_g100bMatch-

Node

fujitsu si-r_g110b_firmwareRange≤04.12

AND

fujitsu si-r_g110bMatch-

Node

fujitsu si-r_g200b_firmwareRange≤04.12

AND

fujitsu si-r_g200bMatch-

Node

fujitsu si-r_g210_firmwareRange≤20.52

AND

fujitsu si-r_g210Match-

Node

fujitsu si-r_g211_firmwareRange≤20.52

AND

fujitsu si-r_g211Match-

Node

fujitsu si-r_g120_firmwareRange≤20.52

AND

fujitsu si-r_g120Match-

Node

fujitsu si-r_g121_firmwareRange≤20.52

AND

fujitsu si-r_g121Match-

Node

fujitsu sr-m_50ap1_firmware

AND

fujitsu sr-m_50ap1Match-

[
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R 30B",
    "versions": [
      {
        "version": "All versions ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R 130B",
    "versions": [
      {
        "version": "All versions ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R 90brin",
    "versions": [
      {
        "version": "All versions ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R570B",
    "versions": [
      {
        "version": "All versions ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R370B",
    "versions": [
      {
        "version": "All versions ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R220D",
    "versions": [
      {
        "version": "All versions ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R G100",
    "versions": [
      {
        "version": "V02.54 and earlier ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R G200",
    "versions": [
      {
        "version": "V02.54 and earlier ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R G100B",
    "versions": [
      {
        "version": "V04.12 and earlier ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R G110B",
    "versions": [
      {
        "version": "V04.12 and earlier ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R G200B",
    "versions": [
      {
        "version": "V04.12 and earlier ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R G210",
    "versions": [
      {
        "version": "V20.52 and earlier ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R G211",
    "versions": [
      {
        "version": "V20.52 and earlier ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R G120",
    "versions": [
      {
        "version": "V20.52 and earlier ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Si-R G121",
    "versions": [
      {
        "version": "V20.52 and earlier ",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "SR-M 50AP1",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/vu/JVNVU96643580/
fujitsu	www.fujitsu.com/jp/products/network/support/2023/fjlan-01/

17 Jun 2026 06:10Current

8.6High risk

Vulners AI Score8.6

CVSS 3.18.8

EPSS0.00332

SSVC

CWE-287