Rewterz Threat Alert – North Korean APT Kimsuky Aka Black Banshee – Active IOCs
March 3, 2024Rewterz Threat Advisory – Multiple D-Link DIR-823G Vulnerabilities
March 4, 2024Rewterz Threat Alert – North Korean APT Kimsuky Aka Black Banshee – Active IOCs
March 3, 2024Rewterz Threat Advisory – Multiple D-Link DIR-823G Vulnerabilities
March 4, 2024Severity
Medium
Analysis Summary
CVE-2023-5617
Hitachi Vantara Pentaho Data Integration & Analytics could allow a remote attacker to obtain sensitive information caused by displaying server error messages. By sending a specially crafted request, a remote attacker could exploit this vulnerability to obtain sensitive information from the error message and use this information to launch further attacks against the affected system. such as network failure, will cause a to be displayed.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-5617
Affected Vendors
Hitachi
Affected Products
- Hitachi Video Analytics
Remediation
Upgrade to the latest version of Vantara Pentaho Data Integration & Analytics, available from the Hitachi Vantara Website.