100 matches found
CVE-2024-2011
A heap-based buffer overflow vulnerability exists in the FOXMAN-UN/UNEM that if exploited will generally lead to a denial of service but can be used to execute arbitrary code, which is usually outside the scope of a program's implicit security policy...
CVE-2024-2011
CVE-2024-2011 affects Hitachi Energy FOXMAN-UN/UNEM components; the Red Hat/Hitachi ENISA/CISA entries confirm a heap-based buffer overflow vulnerability in FOXMAN-UN/UNEM that can cause denial of service and may allow arbitrary code execution. The issue is present in FOXMAN-UN server/APIGateway ...
CVE-2024-2012
vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway that if exploited an attacker could use to allow unintended commands or code to be executed on the UNEM server allowing sensitive data to be read or modified or could cause other unintended behavior...
CVE-2024-2012
vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway that if exploited an attacker could use to allow unintended commands or code to be executed on the UNEM server allowing sensitive data to be read or modified or could cause other unintended behavior...
CVE-2024-2012
CVE-2024-2012 concerns the FOXMAN-UN/UNEM server and its APIGateway. Red Hat/Red Hat-adjacent and other sources describe an authentication bypass and post-authentication surface that could allow unauthenticated or improperly authenticated users to interact with services, potentially enabling unin...
CVE-2024-2013
An authentication bypass vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway component that if exploited allows attackers without any access to interact with the services and the post-authentication attack surface...
CVE-2024-2013
CVE-2024-2013 describes an authentication bypass in the FOXMAN-UN/UNEM server and its APIGateway, enabling unauthenticated interaction with services and the post-authentication surface. The vulnerability is tracked in multiple feeds (NVD, Red Hat, CVE List, ICS advisories) with CVSS v3.1 metrics ...
CVE-2024-2013
An authentication bypass vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway component that if exploited allows attackers without any access to interact with the services and the post-authentication attack surface...
Hitachi Energy UNEM/ECST
SUMMARY Hitachi Energy is aware of a vulnerability that affects the UNEM/ECST versions listed below. If exploited an attacker could potentially intercept or falsify data exchanges between the client and the server. Please refer to the “Recommended Immediate Actions” for information about the...
Hitachi Energy UNEM
SUMMARY Hitachi Energy is aware of multiple internal reported vulnerabilities that affects the UNEM versions listed below. Please refer to the “Recommended Immediate Actions” for information about the remediation. 2. GENERAL MITIGATION FACTORS/WORKAROUNDS Recommended security practices and...
Hitachi FOXMAN-UN Security Vulnerability
Hitachi FOXMAN-UN is a powerful toolset in a comprehensive NMS suite from Hitachi, Japan Hitachi. A security vulnerability exists in Hitachi FOXMAN-UN and UNEM, which stems from a user password reuse vulnerability that could allow a malicious user to extend access to servers and other services...
Hitachi FOXMAN-UN Security Vulnerability
Hitachi FOXMAN-UN is a powerful toolset in a comprehensive NMS suite from Hitachi, Japan Hitachi. A security vulnerability exists in Hitachi FOXMAN-UN and UNEM, which stems from a problem in the message queuing mechanism that could provide sensitive information to an attacker or even execute...
Hitachi FOXMAN-UN Security Vulnerability
Hitachi FOXMAN-UN is a powerful toolset in a comprehensive NMS suite from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in Hitachi FOXMAN-UN and UNEM, which originates from a malicious user being able to perform an arbitrary number of authentication attempts using different passwor...
Hitachi FOXMAN-UN Security Vulnerability
Hitachi FOXMAN-UN is a powerful toolset in a comprehensive NMS suite from Hitachi, Ltd. of Japan Hitachi. A security vulnerability exists in Hitachi FOXMAN-UN and UNEM, which stems from the presence of an authentication bypass vulnerability that allows an attacker to interact with the service and...
Hitachi FOXMAN-UN Security Vulnerability
Hitachi FOXMAN-UN is a powerful toolset in a comprehensive NMS suite from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in Hitachi FOXMAN-UN and UNEM, which arises from sensitive information being stored in plaintext in a resource that is accessed by another span of control...
PT-2024-18606 · Unknown · Foxmann-Un/Unem Server / Api Gateway
Name of the Vulnerable Software and Affected Versions: FOXMAN-UN/UNEM server / API Gateway affected versions not specified Description: A security issue exists in the FOXMAN-UN/UNEM server / API Gateway, allowing an attacker to execute unintended commands or code on the UNEM server if exploited...
PT-2024-18615 · Unknown · Foxmann-Un/Unem Server
Name of the Vulnerable Software and Affected Versions: FOXMAN-UN/UNEM server affected versions not specified Description: An authentication bypass issue exists in the FOXMAN-UN/UNEM server API Gateway component. This allows attackers without any access to interact with the services and the...
PT-2024-22217 · Unknown · Unem Server +1
Name of the Vulnerable Software and Affected Versions: UNEM server / APIGateway affected versions not specified FOXMAN-UN/UNEM server / APIGateway affected versions not specified Description: A vulnerability exists in the UNEM server / APIGateway that allows a malicious user to perform an arbitra...
The vulnerability of the FOXMAN-UN and UNEM software for managing and monitoring networks and equipment lies in the lack of mechanisms for encoding or shielding sensitive outputs, allowing attackers to access confidential data.
The vulnerability of the FOXMAN-UN and UNEM network and equipment management and monitoring software lies in the lack of mechanisms for encoding or shielding output data. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...
CISA Releases One Industrial Control Systems Advisory
CISA released one Industrial Control Systems ICS advisory on June 27, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-178-01 Hitachi EnergyFOXMAN-UN and UNEM Products CISA encourages users and administrators t...