Описание
Authenticated clients can read arbitrary files on the MAIN Computer system using the remote procedure call (RPC) of the InspectSetup service endpoint. The low privilege client is then allowed to read arbitrary files that they do not have authorization to read.
Уязвимые конфигурации
Конфигурация 1Версия от 7.10.0.0 (включая) до 7.18.0.0 (включая)
cpe:2.3:a:hitachienergy:modular_advanced_control_for_hvdc:*:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.0013
Низкий
2.7 Low
CVSS3
4.3 Medium
CVSS3
Дефекты
CWE-668
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 2.7
github
больше 2 лет назад
Authenticated clients can read arbitrary files on the MAIN Computer system using the remote procedure call (RPC) of the InspectSetup service endpoint. The low privilege client is then allowed to read arbitrary files that they do not have authorization to read.
EPSS
Процентиль: 33%
0.0013
Низкий
2.7 Low
CVSS3
4.3 Medium
CVSS3
Дефекты
CWE-668
NVD-CWE-noinfo