Improper Validation of Certificate Vulnerability in Hitachi Device Manager
CVE-2023-34143

5.6MEDIUM

Key Information:

Vendor: Hitachi
Status: Hitachi Device Manager
Vendor: CVE Published:; 18 July 2023

Summary

Improper Validation of Certificate with Host Mismatch vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Server, Device Manager Agent, Host Data Collector components) allows Man in the Middle Attack.This issue affects Hitachi Device Manager: before 8.8.5-02.

Affected Version(s)

Hitachi Device Manager Windows 0 < 8.8.5-02

References

https://www.hitachi.com/products/it/software/security/inf...

vendor-advisory

CVSS V3.1

Score:

5.6

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 18, 2023
Vulnerability Reserved
May 26, 2023

Collectors

NVD DatabaseMitre Database