CVE-2023-2622
CVE-2023-2622
Authenticated clients can read arbitrary files on the MAIN Computer
system using the remote procedure call (RPC) of the InspectSetup
service endpoint. The low privilege client is then allowed to read arbitrary files that they do not have authorization to read.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Affected products
Hitachi Energy · MACH System SoftwareWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →