Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:7 a.m.7 views

CVE-2023-6538

SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in Storage, Server or combined Server+Storage administrative roles are able to access SMU configuration backup, that would normally be barred to those specific...

7.6CVSS6.5AI score0.01583EPSS
Exploits5References1
0day.today
0day.today
added 2024/03/20 12:0 a.m.466 views

Hitachi NAS SMU 14.8.7825 Information Disclosure Vulnerability

Exploit Title: Hitachi NAS HNAS System Management Unit SMU 14.8.7825 - Information Disclosure CVE: CVE-2023-6538 Exploit Author: Arslan Masood @arszilla Vendor: https://www.hitachivantara.com/ Version: --id --sso " Create --host argument: parser.addargument "--host", required=True, type=str,...

7.6CVSS7.1AI score0.01583EPSS
Exploits5
Packet Storm
Packet Storm
added 2024/03/20 12:0 a.m.421 views

Hitachi NAS SMU 14.8.7825 Information Disclosure

Exploit Title: Hitachi NAS HNAS System Management Unit SMU 14.8.7825 - Information Disclosure CVE: CVE-2023-6538 Date: 2023-12-13 Exploit Author: Arslan Masood @arszilla Vendor: https://www.hitachivantara.com/ Version: --id --sso " Create --host argument: parser.addargument "--host", required=Tru...

7.6CVSS7.4AI score0.01583EPSS
Exploits5
Exploit DB
Exploit DB
added 2024/03/20 12:0 a.m.385 views

HNAS SMU 14.8.7825 - Information Disclosure

Exploit Title: Hitachi NAS HNAS System Management Unit SMU 14.8.7825 - Information Disclosure CVE: CVE-2023-6538 Date: 2023-12-13 Exploit Author: Arslan Masood @arszilla Vendor: https://www.hitachivantara.com/ Version: --id --sso " Create --host argument: parser.addargument "--host", required=Tru...

7.6CVSS6.7AI score0.01583EPSS
Exploits5
Cvelist
Cvelist
added 2023/12/11 5:54 p.m.26 views

CVE-2023-6538 System Management Unit (SMU) versions prior to 14.8.7825.01, used to manage Hitachi Vantara NAS products is susceptible to unintended information disclosure via unprivileged access to SMU configuration backup data.

SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in Storage, Server or combined Server+Storage administrative roles are able to access SMU configuration backup, that would normally be barred to those specific...

7.6CVSS7.5AI score0.01583EPSS
Exploits5References1
CVE
CVE
added 2023/12/11 5:54 p.m.48 views

CVE-2023-6538

CVE-2023-6538 is an Insecure Direct Object Reference in Hitachi NAS System Management Unit (SMU). Affects SMU versions prior to 14.8.7825.01; authenticated Storage/Server/Storage+Server administrators can access SMU configuration backup data via URL manipulation (IDOR), leading to unintended info...

7.6CVSS6.4AI score0.01583EPSS
Exploits5References1Affected Software1
Rows per page
Query Builder