CVE-2025-57441
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-22

Last updated on: 2025-10-17

Assigner: MITRE

Description
The Blackmagic ATEM Mini Pro 2.7 exposes sensitive device and stream configuration information via an unauthenticated Telnet service on port 9990. Upon connection, the attacker can access a protocol preamble that leaks the video mode, routing configuration, input/output labels, device model, and even internal identifiers such as the unique ID. This can be used for reconnaissance and planning further attacks.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-22
Last Modified
2025-10-17
Generated
2026-06-16
AI Q&A
2025-09-22
EPSS Evaluated
2026-06-15
NVD
CVE-2025-57441
EUVD
EUVD-2025-30796
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
blackmagicdesign atem_mini_pro_firmware 2.7
blackmagicdesign atem_mini_pro *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-200 The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

The vulnerability in the Blackmagic ATEM Mini Pro 2.7 involves an unauthenticated Telnet service running on port 9990 that exposes sensitive device and stream configuration information. An attacker connecting to this service can access details such as video mode, routing configuration, input/output labels, device model, and unique internal identifiers. This information leakage can be used for reconnaissance and to plan further attacks.

Impact Analysis

This vulnerability can impact you by allowing an attacker to gain sensitive configuration information without authentication, which can lead to unauthorized access, compromise of device integrity, and disruption of video streaming services. The high CVSS score (9.8) indicates it poses a critical risk with potential for confidentiality, integrity, and availability impacts.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-57441. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart