Vulnerability Description
An Information Exposure issue was discovered in Hitachi Command Suite 8.5.3. A remote attacker may be able to exploit a flaw in the permission of messaging that may allow for information exposure via a crafted message.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hitachi | Compute Systems Manager | < 8.6.0-02 |
| Hitachi | Device Manager | >= 7.0.0-00, < 8.6.1-02 |
| Hitachi | Replication Manager | >= 7.0.0-00, < 8.6.1-02 |
| Hitachi | Tiered Storage Manager | >= 7.0.0-00, < 8.6.1-02 |
| Hitachi | Tuning Manager | >= 7.0.0-00, < 8.6.1-02 |
| Linux | Linux Kernel | - |
| Microsoft | Windows | - |
| Hitachi | Command Suite | 8.5.3 |
Related Weaknesses (CWE)
References
- http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2Vendor Advisory
- http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2Vendor Advisory
FAQ
What is CVE-2018-14735?
CVE-2018-14735 is a vulnerability with a CVSS score of 7.5 (HIGH). An Information Exposure issue was discovered in Hitachi Command Suite 8.5.3. A remote attacker may be able to exploit a flaw in the permission of messaging that may allow for information exposure via ...
How severe is CVE-2018-14735?
CVE-2018-14735 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-14735?
Check the references section above for vendor advisories and patch information. Affected products include: Hitachi Compute Systems Manager, Hitachi Device Manager, Hitachi Replication Manager, Hitachi Tiered Storage Manager, Hitachi Tuning Manager.