First published: Fri Feb 14 2020(Updated: )
A vulnerability in Hitachi Command Suite prior to 8.7.1-00 and Hitachi Automation Director prior to 8.5.0-00 allow authenticated remote users to expose technical information through error messages. Hitachi Command Suite includes Hitachi Device Manager and Hitachi Compute Systems Manager.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Hitachi Device Manager | >=7.0.0-00<8.7.1-00 | |
Linux Linux kernel | ||
Microsoft Windows | ||
Oracle Solaris | ||
Hitachi Compute Systems Manager | <8.7.1-00 | |
Hitachi Automation Director | >=8.1.1-00<8.5.0-00 | |
Hitachi Automation Director | >=8.2.0-00<8.5.0-00 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-21032 is a vulnerability in Hitachi Command Suite and Hitachi Automation Director that allows authenticated remote users to expose technical information through error messages.
The affected software includes Hitachi Command Suite (including Hitachi Device Manager and Hitachi Compute Systems Manager) and Hitachi Automation Director.
CVE-2018-21032 has a severity level of medium with a CVSS score of 4.3.
Authenticated remote users can exploit CVE-2018-21032 by using specially crafted error messages to reveal technical information.
More information about CVE-2018-21032 can be found at the following references: [1] http://www.hitachi.co.jp/Prod/comp/soft1/global/security/ [2] https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2019-128/