Exposure of Technical Information through Error Messages in Hitachi Command Suite and Hitachi Automation Director

Exposure of Technical Information through Error Messages in Hitachi Command Suite and Hitachi Automation Director

CVE-2018-21032 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

A vulnerability in Hitachi Command Suite prior to 8.7.1-00 and Hitachi Automation Director prior to 8.5.0-00 allow authenticated remote users to expose technical information through error messages. Hitachi Command Suite includes Hitachi Device Manager and Hitachi Compute Systems Manager.

Learn more about our User Device Pen Test.