Remote Information Disclosure in Hitachi Command Suite
CVE-2018-21026

7.5HIGH

Key Information:

Vendor: Hitachi
Status: Device Manager
Vendor: CVE Published:; 12 November 2019

Summary

A vulnerability in Hitachi Command Suite allows an unauthenticated remote attacker to access sensitive internal information. This exposure can lead to further attacks or unauthorized access to sensitive data. The affected versions include Hitachi Command Suite 7.x and 8.x prior to version 8.6.5-00. Users of these versions are advised to implement necessary security measures and update their systems to protect against potential threats.

References

http://www.hitachi.co.jp/Prod/comp/soft1/global/security/...

x_refsource_MISC

https://www.hitachi.co.jp/Prod/comp/soft1/global/security...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 12, 2019
Vulnerability Reserved
Oct 8, 2019