RMI Vulnerability in Hitachi Device Manager
CVE-2017-9294

9.8CRITICAL

Key Information:

Vendor: Hitachi
Status: Device Manager
Vendor: CVE Published:; 29 May 2017

Summary

An RMI vulnerability has been identified in Hitachi Device Manager that allows remote attackers to execute internal commands without the need for authentication. This flaw can potentially lead to unauthorized access and control over the affected systems, posing significant security risks for users and organizations relying on this management software.

References

http://www.hitachi.co.jp/Prod/comp/soft1/global/security/...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/98765

vdb-entryx_refsource_BID

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 29, 2017
Vulnerability Reserved
May 29, 2017