Insertion of Sensitive Information into Log File Vulnerability Affects Cosminexus Component Container

CVE-2023-6814

5.6MEDIUM

Key Information

Vendor: Hitachi
Status: Cosminexus Component Container
Vendor: CVE Published:; 12 March 2024

Summary

Insertion of Sensitive Information into Log File vulnerability in Hitachi Cosminexus Component Container allows local users to gain sensitive information.This issue affects Cosminexus Component Container: from 11-30 before 11-30-05, from 11-20 before 11-20-07, from 11-10 before 11-10-10, from 11-00 before 11-00-12, All versions of V8 and V9.

Affected Version(s)

Cosminexus Component Container < 11-30-05

Cosminexus Component Container < 11-20-07

Cosminexus Component Container < 11-10-10

CVSS V3.1

Score:

5.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published.
Mar 12, 2024
Vulnerability Reserved.
Dec 14, 2023

Collectors

NVD DatabaseMitre Database