CVE-2023-53741
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2023-53741, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-12-10

Last updated on: 2025-12-18

Assigner: VulnCheck

Description

Screen SFT DAB 1.9.3 contains a weak session management vulnerability that allows attackers to bypass authentication controls by reusing IP address-bound session identifiers. Attackers can exploit the vulnerable API by intercepting and reusing established sessions to remove user accounts without proper authorization.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-12-10
Last Modified
2025-12-18
Generated
2026-07-06
AI Q&A
2025-12-11
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 10 associated CPEs
Vendor Product Version / Range
dbbroadcast sft_dab_015\/c_firmware 1.9.3
dbbroadcast sft_dab_015\/c *
dbbroadcast sft_dab_050\/c_firmware 1.9.3
dbbroadcast sft_dab_050\/c *
dbbroadcast sft_dab_150\/c_firmware 1.9.3
dbbroadcast sft_dab_150\/c *
dbbroadcast sft_dab_300\/c_firmware 1.9.3
dbbroadcast sft_dab_300\/c *
dbbroadcast sft_dab_600\/c_firmware 1.9.3
dbbroadcast sft_dab_600\/c *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-384 Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability in Screen SFT DAB 1.9.3 involves weak session management that allows attackers to bypass authentication by reusing session identifiers that are bound to IP addresses. Attackers can intercept and reuse these established sessions to perform unauthorized actions, such as removing user accounts.

Impact Analysis

The vulnerability can allow attackers to bypass authentication controls and perform unauthorized actions like deleting user accounts. This can lead to loss of user data, disruption of services, and potential compromise of system integrity.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2023-53741. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart