Path Disclosure Vulnerability in Hitachi Energy LinkOne Web Server

Path Disclosure Vulnerability in Hitachi Energy LinkOne Web Server

CVE-2021-40338 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Hitachi Energy LinkOne product, has a vulnerability due to a web server misconfiguration, that enables debug mode and reveals the full path of the filesystem directory when an attacker generates errors during a query operation. This issue affects: Hitachi Energy LinkOne 3.20; 3.22; 3.23; 3.24; 3.25; 3.26.

Learn more about our Web App Pen Testing.