Unintended Actors May Access Sensitive Information or Execute Arbitrary Code via Vulnerability in Message Queueing Mechanism

CVE-2024-28023

5.7MEDIUM

Key Information

Vendor: Hitachi
Status: Foxman-un; Unem
Vendor: CVE Published:; 11 June 2024

Summary

A vulnerability exists in the message queueing mechanism that if exploited can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.

Affected Version(s)

FOXMAN-UN = FOXMAN-UN R16B PC2

FOXMAN-UN >= FOXMAN-UN R16B PC3

FOXMAN-UN = FOXMAN-UN R15B PC4

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published.
Jun 11, 2024
Vulnerability Reserved.
Feb 29, 2024

Collectors

NVD DatabaseMitre Database