Vulnerability Details CVE-2025-57432
Blackmagic Web Presenter version 3.3 exposes a Telnet service on port 9977 that accepts unauthenticated commands. This service allows remote attackers to manipulate stream settings, including changing video modes and possibly altering device functionality. No credentials or authentication mechanisms are required to interact with the Telnet interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.3%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2025-57432
-
cpe:2.3:h:blackmagicdesign:web_presenter_4k:-
-
cpe:2.3:h:blackmagicdesign:web_presenter_hd:-
-
cpe:2.3:o:blackmagicdesign:web_presenter_4k_firmware:3.3
-
cpe:2.3:o:blackmagicdesign:web_presenter_hd_firmware:3.3