111 matches found
CVE-2021-40341
CVE-2021-40341 involves the use of DES to encrypt user credentials in Hitachi Energy FOXMAN-UN and UNEM network-management products. The affected families span FOXMAN-UN R9C–R16A and UNEM R9C–R16A. The root cause is the inadequate encryption strength of DES (56-bit key), which enables decryption ...
CISA Releases Three Industrial Systems Control Advisories
CISA released three Industrial Control Systems ICS advisories on January 5, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...
Hitachi FOXMAN-UN 信任管理问题漏洞
Hitachi FOXMAN-UN is a powerful toolset for a comprehensive NMS suite from Hitachi, Japan. A security vulnerability exists in Hitachi FOXMAN-UN, which stems from the fact that it contains public and private keys used to sign and protect Custom Parameter Sets CPS files from modification, allowing ...
PT-2023-12361 · Hitachi Energy · Hitachi Energy Foxman-Un +1
Name of the Vulnerable Software and Affected Versions: Hitachi Energy FOXMAN-UN versions R9C through R16A Hitachi Energy UNEM versions R9C through R16A Description: The DES cipher, which has inadequate encryption strength, is used in Hitachi Energy FOXMAN-UN to encrypt user credentials used to...
PT-2023-13718 · Unem +1 · Unem +1
Name of the Vulnerable Software and Affected Versions: FOXMAN-UN versions R9C through R15B UNEM versions R9C through R15B Description: The issue affects the communication between the client and the server application of the affected products, which is partially done using CORBA Common Object...
Hitachi FOXMAN-UN 信任管理问题漏洞
Hitachi FOXMAN-UN is a powerful toolset for a comprehensive NMS suite from Hitachi, Japan. A security vulnerability exists in Hitachi FOXMAN-UN, which stems from the fact that its message queue contains hard-coded credentials that allow an attacker to access data from the internal message queue...
Hitachi FOXMAN-UN 加密问题漏洞
Hitachi FOXMAN-UN is a powerful toolset for a comprehensive NMS suite from Hitachi, Japan. Hitachi FOXMAN-UN has a security vulnerability that stems from its use of DES ciphers to encrypt user credentials used to access network elements.DES is no longer considered secure because its short 56-bit...
Hitachi FOXMAN-UN 授权问题漏洞
Hitachi FOXMAN-UN is a powerful toolset for a comprehensive NMS suite from Hitachi, Japan. An authorization issue vulnerability exists in Hitachi FOXMAN-UN, which stems from its use of a DES implementation with a default key for encryption that allows an attacker to obtain sensitive information a...
Hitachi FOXMAN-UN 安全漏洞
Hitachi FOXMAN-UN is a powerful toolset for a comprehensive NMS suite from Hitachi, Japan. A security vulnerability exists in Hitachi FOXMAN-UN that stems from the fact that the communication between its client FOXMAN-UN User Interface and server application FOXMAN-UN Core partially uses CORBA...
PT-2023-12362 · Unem +1 · Unem +1
Name of the Vulnerable Software and Affected Versions: FOXMAN-UN versions R9C through R16A UNEM versions R9C through R16A Description: The issue affects the DES implementation in the affected product versions, which use a default key for encryption. Successful exploitation allows an attacker to...
Hitachi Energy FOXMAN-UN
1. EXECUTIVE SUMMARY CVSS v3 8.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: FOXMAN-UN Vulnerabilities: Inadequate Encryption Strength, Use of Default Cryptographic Key, Use of Hard-coded Cryptographic Key, Cleartext Transmission of Sensitive...