Insertion of Sensitive Information into Log File Vulnerability Affects Cosminexus Component Container
CVE-2023-6814

5.6MEDIUM

Key Information:

Vendor: Hitachi
Status: Cosminexus Component Container
Vendor: CVE Published:; 12 March 2024

Summary

Insertion of Sensitive Information into Log File vulnerability in Hitachi Cosminexus Component Container allows local users to gain sensitive information.This issue affects Cosminexus Component Container: from 11-30 before 11-30-05, from 11-20 before 11-20-07, from 11-10 before 11-10-10, from 11-00 before 11-00-12, All versions of V8 and V9.

Affected Version(s)

Cosminexus Component Container 11-30 < 11-30-05

Cosminexus Component Container 11-20 < 11-20-07

Cosminexus Component Container 11-10 < 11-10-10

References

https://www.hitachi.com/products/it/software/security/inf...

vendor-advisory

CVSS V3.1

Score:

5.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Mar 12, 2024
Vulnerability Reserved
Dec 14, 2023