Rewterz Threat Advisory – ICS: Hitachi Ops Center Multiple Vulnerabilities
October 5, 2023Rewterz Threat Advisory – CVE-2023-42824 – Apple iOS and iPadOS Zero-Day Vulnerability
October 5, 2023Rewterz Threat Advisory – ICS: Hitachi Ops Center Multiple Vulnerabilities
October 5, 2023Rewterz Threat Advisory – CVE-2023-42824 – Apple iOS and iPadOS Zero-Day Vulnerability
October 5, 2023Severity
High
Analysis Summary
CVE-2023-3440
Hitachi JP1/Performance Management could allow a local attacker to bypass security restrictions, caused by incorrect default permissions vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to perform file manipulation.
Impact
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2023-3440
Affected Vendors
Hitachi
Affected Products
- Hitachi JP1/Performance Management
Remediation
Refer to Hitachi-sec-2023-145 for patch, upgrade or suggested workaround information.