Open Redirect Vulnerability in Hitachi Device Manager and Tuning Manager
CVE-2017-9296

6.1MEDIUM

Key Information:

Vendor: Hitachi
Status: Device Manager
Vendor: CVE Published:; 29 May 2017

What is CVE-2017-9296?

An open redirect vulnerability allows remote attackers to exploit affected versions of Hitachi Device Manager and Tuning Manager. By leveraging this weakness, unauthenticated users can redirect authenticated users to arbitrary websites. This can lead to potential phishing attacks or exposure of sensitive information, as users may unknowingly navigate to malicious sites that impersonate legitimate services.

References

http://www.hitachi.co.jp/Prod/comp/soft1/global/security/...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/98774

vdb-entryx_refsource_BID

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 29, 2017
Vulnerability Reserved
May 29, 2017