Описание
A vulnerability exists in the SDM600 API web services authorization validation implementation. An attacker who successfully exploits the vulnerability could read data directly from a data store that is not restricted, or insufficiently protected, having access to sensitive data. This issue affects: All SDM600 versions prior to version 1.2 FP3 HF4 (Build Nr. 1.2.23000.291) List of CPEs: * cpe:2.3:a:hitachienergy:sdm600:1.0:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.1:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.9002.257:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.10002.257:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.11002.149:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.12002.222:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.13002.72:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.44:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.92:::::::* * cpe:2.3:a:hitachienergy:sdm600...
A vulnerability exists in the SDM600 API web services authorization validation implementation. An attacker who successfully exploits the vulnerability could read data directly from a data store that is not restricted, or insufficiently protected, having access to sensitive data. This issue affects: All SDM600 versions prior to version 1.2 FP3 HF4 (Build Nr. 1.2.23000.291) List of CPEs: * cpe:2.3:a:hitachienergy:sdm600:1.0:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.1:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.9002.257:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.10002.257:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.11002.149:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.12002.222:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.13002.72:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.44:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.92:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.108:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.182:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.257:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.342:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.447:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.481:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.506:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.566:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.20000.3174:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.21000.291:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.21000.931:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.21000.105:::::::* * cpe:2.3:a:hitachienergy:sdm600:1.2.23000.291:::::::*
Связанные уязвимости
A vulnerability exists in the SDM600 API web services authorization validation implementation. An attacker who successfully exploits the vulnerability could read data directly from a data store that is not restricted, or insufficiently protected, having access to sensitive data. This issue affects: All SDM600 versions prior to version 1.2 FP3 HF4 (Build Nr. 1.2.23000.291) List of CPEs: * cpe:2.3:a:hitachienergy:sdm600:1.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.9002.257:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.10002.257:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.11002.149:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.12002.222:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.13002.72:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.44:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:sdm600:1.2.14002.92:*:*:*:*:
Уязвимость реализации прикладного программного интерфейса диспетчера управления системными данными Hitachi Energy System Data Manager SDM600, позволяющая нарушителю считывать данные из хранилища данных