CVE-2023-2622
CVE-2023-2622
Authenticated clients can read arbitrary files on the MAIN Computer
system using the remote procedure call (RPC) of the InspectSetup
service endpoint. The low privilege client is then allowed to read arbitrary files that they do not have authorization to read.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Productos afectados
Hitachi Energy · MACH System Software¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →