Hitachi Ops Center Analyzer Session Hijacking Vulnerability
CVE-2024-2493

7.5HIGH

Key Information:

Vendor: Hitachi
Status: Hitachi Ops Center Analyzer
Vendor: CVE Published:; 23 April 2024

What is CVE-2024-2493?

A Session Hijacking vulnerability in Hitachi Ops Center Analyzer allows an attacker to potentially exploit the application's session management. Given that affected versions range from 10.0.0-00 and prior to 11.0.1-00, the vulnerability may lead to unauthorized access, potentially compromising sensitive user data and system integrity. It is crucial for users of the affected versions to apply necessary patches to mitigate the risks associated with this vulnerability.

Affected Version(s)

Hitachi Ops Center Analyzer 10.0.0-00 < 11.0.1-00

References

https://www.hitachi.com/products/it/software/security/inf...

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 23, 2024
Vulnerability Reserved
Mar 15, 2024