Vulnerability Details CVE-2025-57437
The Blackmagic Web Presenter HD firmware version 3.3 exposes sensitive information via an unauthenticated Telnet service on port 9977. When connected, the service reveals extensive device configuration data including: - Model, version, and unique identifiers - Network settings including IP, MAC, DNS - Current stream platform, stream key, and streaming URL - Audio/video configuration This data can be used to hijack live streams or perform network reconnaissance.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.5%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2025-57437
-
cpe:2.3:h:blackmagicdesign:web_presenter_hd:-
-
cpe:2.3:o:blackmagicdesign:web_presenter_hd_firmware:3.3