Unintended Actors May Access Sensitive Information or Execute Arbitrary Code via Vulnerability in Message Queueing Mechanism
CVE-2024-28023

5.7MEDIUM

Key Information:

Vendor: Hitachi
Status: Foxman-un; Unem
Vendor: CVE Published:; 11 June 2024

What is CVE-2024-28023?

A vulnerability exists in the message queueing mechanism that if exploited can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.

Affected Version(s)

FOXMAN-UN FOXMAN-UN R16B PC2

FOXMAN-UN FOXMAN-UN R15B PC4

UNEM UNEM R16B PC2

References

https://publisher.hitachienergy.com/preview?DocumentId=8D...

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 11, 2024
Vulnerability Reserved
Feb 29, 2024

Hitachi

What is CVE-2024-28023?

Affected Version(s)

References

CVSS V3.1

Timeline