CVE-2023-39379

🗓️ 04 Aug 2023 09:43:32Reported by jpcertType

Fujitsu ISM stores sensitive info in cleartext, allowing retrieval of proxy server password

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2023-39903	7 Aug 202305:15	–	attackerkb
Circl	CVE-2023-39379	4 Aug 202314:40	–	circl
CNNVD	Fujitsu Software Infrastructure Manager Security Vulnerability	4 Aug 202300:00	–	cnnvd
Cvelist	CVE-2023-39379	4 Aug 202309:43	–	cvelist
EUVD	EUVD-2023-43104	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	JVN#38847224: Fujitsu Software Infrastructure Manager (ISM) stores sensitive information in cleartext	4 Aug 202300:00	–	jvn
Japan Vulnerability Notes	Fujitsu Software Infrastructure Manager (ISM) stores sensitive information in cleartext	4 Aug 202308:31	–	jvn
NVD	CVE-2023-39379	4 Aug 202310:15	–	nvd
Prion	Information disclosure	4 Aug 202310:15	–	prion
Prion	Authorization	7 Aug 202305:15	–	prion

NVD

Vulners

Node

fujitsu software_infrastructure_managerMatch2.8.0.060advanced-

fujitsu software_infrastructure_managerMatch2.8.0.060advancedprimeflex

fujitsu software_infrastructure_managerMatch2.8.0.060essential

[
  {
    "vendor": "Fujitsu Limited",
    "product": "Fujitsu Software Infrastructure Manager Advanced Edition",
    "versions": [
      {
        "version": "V2.8.0.060",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Fujitsu Software Infrastructure Manager Advanced Edition for PRIMEFLEX",
    "versions": [
      {
        "version": "V2.8.0.060",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fujitsu Limited",
    "product": "Fujitsu Software Infrastructure Manager Essential Edition",
    "versions": [
      {
        "version": "V2.8.0.060",
        "status": "affected"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN38847224/
support	www.support.ts.fujitsu.com/IndexProdSecurity.asp

21 Nov 2024 08:15Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.17.5

EPSS0.00058

SSVC

CWE-312