CVE-2023-5038

Q: What is the severity of CVE-2023-5038?

CVE-2023-5038 has a CVSS score of 7.5 (HIGH). This vulnerability allows unauthenticated attackers to cause a denial-of-service condition on affected cameras by accessing a crafted URL. The attack renders the web management interface inaccessible until the device is manually restarted or power-cycled. This affects Hanwha Vision cameras with vulnerable firmware versions.

7.5 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows unauthenticated attackers to cause a denial-of-service condition on affected cameras by accessing a crafted URL. The attack renders the web management interface inaccessible until the device is manually restarted or power-cycled. This affects Hanwha Vision cameras with vulnerable firmware versions.

💻 Affected Systems

Products:

Hanwha Vision cameras

Versions: Specific vulnerable versions not detailed in provided references; check manufacturer advisory.

Operating Systems: Embedded camera firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Affects web management interface; cameras with default configurations are vulnerable.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Persistent DoS requiring physical access to restart camera, potentially disrupting surveillance operations for extended periods.

🟠

Likely Case

Temporary service disruption requiring manual intervention to restore web management interface.

🟢

If Mitigated

No impact if patched or if cameras are not internet-facing and network access is restricted.

🌐 Internet-Facing: HIGH - Unauthenticated attack can be launched remotely without credentials.

🏢 Internal Only: MEDIUM - Attack requires network access but no authentication.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Attack requires only crafted URL access; no authentication or special tools needed.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check manufacturer firmware updates

Vendor Advisory: https://www.hanwhavision.com/wp-content/uploads/2024/06/Camera-Vulnerability-Report-CVE-2023-5037-5038.pdf

Restart Required: Yes

Instructions:

1. Download latest firmware from Hanwha Vision support portal. 2. Upload firmware via camera web interface. 3. Reboot camera after installation.

🔧 Temporary Workarounds

Network segmentation

all

Restrict access to camera web interface to trusted networks only.

Firewall rules

all

Block external access to camera management ports (typically 80/443).

🧯 If You Can't Patch

Isolate cameras on separate VLAN with strict access controls.
Implement network monitoring for unusual HTTP requests to camera interfaces.

🔍 How to Verify

Check if Vulnerable:

Check firmware version against manufacturer's advisory; test web interface accessibility after suspected attack.

Check Version:

Check camera web interface > System > Information for firmware version.

Verify Fix Applied:

Verify firmware version is updated per advisory; test web interface remains accessible after attempted exploitation.

📡 Detection & Monitoring

Log Indicators:

Repeated HTTP requests to unusual URLs on camera interface
Web interface becoming unresponsive

Network Indicators:

Unusual HTTP traffic patterns to camera management ports
Multiple connection attempts from single source

SIEM Query:

source_ip="camera_ip" AND (http_uri CONTAINS "crafted_pattern" OR http_status="503")

📊 Metadata

CVE ID: CVE-2023-5038

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-248

Published: June 25, 2024

Last Updated: November 21, 2024

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ane L6012r Firmware by Hanwhavision

Ane L7012r Firmware by Hanwhavision

Ano L6012r Firmware by Hanwhavision

Ano L6022r Firmware by Hanwhavision

Ano L6082r Firmware by Hanwhavision

Ano L7012r Firmware by Hanwhavision

Ano L7022r Firmware by Hanwhavision

Ano L7082r Firmware by Hanwhavision

Anv L6012r Firmware by Hanwhavision

Anv L6023r Firmware by Hanwhavision

Anv L6082r Firmware by Hanwhavision

Anv L7012r Firmware by Hanwhavision

Anv L7082r Firmware by Hanwhavision

Lnd 6012r Firmware by Hanwhavision

Lnd 6022r Firmware by Hanwhavision

Lnd 6032r Firmware by Hanwhavision

Lnd 6072r Firmware by Hanwhavision

Lno 6012r Firmware by Hanwhavision

Lno 6022r Firmware by Hanwhavision

Lno 6032r Firmware by Hanwhavision

Lno 6072r Firmware by Hanwhavision

Lnv 6012r Firmware by Hanwhavision

Lnv 6022r Firmware by Hanwhavision

Lnv 6032r Firmware by Hanwhavision

Lnv 6072r Firmware by Hanwhavision

Pnm 12082rvd Firmware by Hanwhavision

Pnm 7002vd Firmware by Hanwhavision

Pnm 7082rvd Firmware by Hanwhavision

Pnm 8082vt Firmware by Hanwhavision

Pnm 9000qb Firmware by Hanwhavision

Pnm 9002vq Firmware by Hanwhavision

Pnm 9022v Firmware by Hanwhavision

Pnm 9031rv Firmware by Hanwhavision

Pnm 9084qz Firmware by Hanwhavision

Pnm 9084qz1 Firmware by Hanwhavision

Pnm 9084rqz Firmware by Hanwhavision

Pnm 9084rqz1 Firmware by Hanwhavision

Pnm 9085rqz Firmware by Hanwhavision

Pnm 9085rqz1 Firmware by Hanwhavision

Pnm 9322vqp Firmware by Hanwhavision

Pnm C9022rv Firmware by Hanwhavision

Qnb 8002 Firmware by Hanwhavision

Qnd 6011 Firmware by Hanwhavision

Qnd 6012r Firmware by Hanwhavision

Qnd 6012r1 Firmware by Hanwhavision

Qnd 6021 Firmware by Hanwhavision

Qnd 6022r Firmware by Hanwhavision

Qnd 6022r1 Firmware by Hanwhavision

Qnd 6032r Firmware by Hanwhavision

Qnd 6032r1 Firmware by Hanwhavision

Qnd 6072r Firmware by Hanwhavision

Qnd 6072r1 Firmware by Hanwhavision

Qnd 6073r Firmware by Hanwhavision

Qnd 6082r Firmware by Hanwhavision

Qnd 6082r1 Firmware by Hanwhavision

Qnd 6083r Firmware by Hanwhavision

Qnd 7012r Firmware by Hanwhavision

Qnd 7022r Firmware by Hanwhavision

Qnd 7032r Firmware by Hanwhavision

Qnd 7082r Firmware by Hanwhavision

Qnd 8010r Firmware by Hanwhavision

Qnd 8011 Firmware by Hanwhavision

Qnd 8020r Firmware by Hanwhavision

Qnd 8021 Firmware by Hanwhavision

Qnd 8030r Firmware by Hanwhavision

Qnd 8080r Firmware by Hanwhavision

Qne 8011r Firmware by Hanwhavision

Qne 8021r Firmware by Hanwhavision

Qno 6012r Firmware by Hanwhavision

Qno 6012r1 Firmware by Hanwhavision

Qno 6014r Firmware by Hanwhavision

Qno 6022r Firmware by Hanwhavision

Qno 6022r1 Firmware by Hanwhavision

Qno 6032r Firmware by Hanwhavision

Qno 6032r1 Firmware by Hanwhavision

Qno 6072r Firmware by Hanwhavision

Qno 6072r1 Firmware by Hanwhavision