CVE-2017-9295

6.5MEDIUM

Key Information:

Vendor: Hitachi
Status: Device Manager
Vendor: CVE Published:; 29 May 2017

Summary

XXE vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Replication Manager before 8.5.2-00 allows authenticated remote users to read arbitrary files.

References

http://www.hitachi.co.jp/Prod/comp/soft1/global/security/...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/98761

vdb-entryx_refsource_BID

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 29, 2017
Vulnerability Reserved
May 29, 2017