The Blackmagic Web Presenter HD firmware version 3.3 exposes sensitive information via an unauthenticated Telnet service on port 9977. When connected, the service reveals extensive device configuration data including: - Model, version, and unique identifiers - Network settings including IP, MAC, DNS - Current stream platform, stream key, and streaming URL - Audio/video configuration This data can be used to hijack live streams or perform network reconnaissance.
The Telnet service running on port 9977 requires no authentication, allowing any network-accessible attacker to establish a connection and read data. Upon connection, the service automatically discloses extensive device configuration information, including model, identifiers, network settings (IP, MAC, DNS), current streaming platform, stream key, stream URL, and audio/video configuration. The attack vector is network-based, requires no user interaction or any privileges, making the vulnerability trivial to exploit.
An attacker can hijack an active video stream (stream hijacking) by obtaining the stream key and conduct network reconnaissance based on disclosed network settings and device identifiers.
Apply patches available from the manufacturer according to the references. Until the firmware is updated, it is recommended to block access to TCP port 9977 at the firewall level and isolate the device in a dedicated network segment with restricted access.
Blackmagic Web Presenter HD and Blackmagic Web Presenter HD Firmware version 3.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HBlackmagicdesign Web Presenter Hd
HWBlackmagicdesignwszystkie wersjeBlackmagicdesign Web Presenter Hd Firmware
OSBlackmagicdesign3.3
Related vulnerabilities
Blackmagic Web Presenter — nieuwierzytelniony dostęp do usługi Telnet
Blackmagic ATEM Mini Pro – ujawnienie konfiguracji przez nieuwierzytelniony Telnet
When parsing a file that is submitted to the DPDecoder service as a job, the service will use the combination ...
When parsing a file that is submitted to the DPDecoder service as a job, the R3D SDK will mistakenly skip over...