5 matches found
CVE-2023-2622
Authenticated clients can read arbitrary files on the MAIN Computer system using the remote procedure call RPC of the InspectSetup service endpoint. The low privilege client is then allowed to read arbitrary files that they do not have authorization to read...
CVE-2023-2622
Authenticated clients can read arbitrary files on the MAIN Computer system using the remote procedure call RPC of the InspectSetup service endpoint. The low privilege client is then allowed to read arbitrary files that they do not have authorization to read...
CVE-2023-2622
Authenticated clients can read arbitrary files on the MAIN Computer system using the remote procedure call RPC of the InspectSetup service endpoint. The low privilege client is then allowed to read arbitrary files that they do not have authorization to read...
CVE-2023-2622
Authenticated clients can read arbitrary files on the MAIN Computer system using the remote procedure call RPC of the InspectSetup service endpoint. The low privilege client is then allowed to read arbitrary files that they do not have authorization to read...
CVE-2023-2622
CVE-2023-2622 describes an authorization flaw in Hitachi Energy MACH System Software where authenticated clients can exploit the InspectSetup RPC to read arbitrary files the client is not authorized to access. The vulnerability is tied to an incorrect privilege assessment, enabling a low-privileg...