Hitachi Ops Center Analyzer Session Hijacking Vulnerability
CVE-2024-2493

7.5HIGH

Key Information:

Vendor: Hitachi
Status: Hitachi Ops Center Analyzer
Vendor: CVE Published:; 23 April 2024

Summary

A Session Hijacking vulnerability in Hitachi Ops Center Analyzer allows an attacker to potentially exploit the application's session management. Given that affected versions range from 10.0.0-00 and prior to 11.0.1-00, the vulnerability may lead to unauthorized access, potentially compromising sensitive user data and system integrity. It is crucial for users of the affected versions to apply necessary patches to mitigate the risks associated with this vulnerability.

Affected Version(s)

Hitachi Ops Center Analyzer 10.0.0-00 < 11.0.1-00

References

https://www.hitachi.com/products/it/software/security/inf...

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 23, 2024
Vulnerability Reserved
Mar 15, 2024

Collectors

NVD DatabaseMitre Database