ETERNUS SF vulnerable to insertion of sensitive information into maintenance data

Overview ETERNUS SF provided by Fsas Technologies Inc. contains the following vulnerability. Insertion of sensitive information into maintenance data CWE-532 - CVE-2025-68919 Fsas Technologies Inc. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact...

CVE-2025-68919

Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express DX / AF Management Software before 16.8-16.9.1 PA 2025-12, when collected maintenance data is accessible by a principal/authority other than ETERNUS SF Admin, allows an attacker to potentially affect system confidentiality, integrity, and...

CVE-2025-68919

Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express DX / AF Management Software before 16.8-16.9.1 PA 2025-12, when collected maintenance data is accessible by a principal/authority other than ETERNUS SF Admin, allows an attacker to potentially affect system confidentiality, integrity, and...

CVE-2025-68919

Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express DX / AF Management Software before 16.8-16.9.1 PA 2025-12, when collected maintenance data is accessible by a principal/authority other than ETERNUS SF Admin, allows an attacker to potentially affect system confidentiality, integrity, and...

CVE-2025-68919

Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express DX / AF Management Software before 16.8-16.9.1 PA 2025-12, when collected maintenance data is accessible by a principal/authority other than ETERNUS SF Admin, allows an attacker to potentially affect system confidentiality, integrity, and...

CVE-2025-68919

CVE-2025-68919 affects Fujitsu Fsas Technologies ETERNUS SF ACM/SC/Express (DX/AF Management Software). The issue arises because maintenance data collected by the system can be accessed by a non-admin principal, potentially exposing data and impacting confidentiality (C), with limited integrity/a...

Fujitsu多款产品和Fsas多款产品 日志信息泄露漏洞

Fsas Technologies ETERNUS SF and others are products of Fsas Technologies, Japan.Fsas Technologies ETERNUS SF is a storage system replication and backup management software.Fujitsu ETERNUS SF ACM and others are products of Fujitsu, Japan. Fujitsu ETERNUS SF ACM is a data replication, backup, and...

PT-2025-53380

Name of the Vulnerable Software and Affected Versions Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express DX / AF Management Software versions prior to 16.8-16.9.1 PA 2025-12 Description When maintenance data is collected, access by unauthorized principals or authorities—those other than ETERNU...

Fujitsu Software Infrastructure Manager Security Vulnerability

Fujitsu Software Infrastructure Manager is an infrastructure manager from Fujitsu Japan. A security vulnerability exists in Fujitsu Software Infrastructure Manager prior to version 2.8.0.061, which stems from the ismsnap component collecting and storing authorization credentials in plaintext. A...

CVE-2023-39379

Fujitsu Software Infrastructure Manager ISM stores sensitive information at the product's maintenance data ismsnap in cleartext form. As a result, the password for the proxy server that is configured in ISM may be retrieved. Affected products and versions are as follows: Fujitsu Software...

CVE-2023-39379

Fujitsu Software Infrastructure Manager ISM stores sensitive information at the product's maintenance data ismsnap in cleartext form. As a result, the password for the proxy server that is configured in ISM may be retrieved. Affected products and versions are as follows: Fujitsu Software...

Fujitsu Software Infrastructure Manager (ISM) stores sensitive information in cleartext

Overview Fujitsu Software Infrastructure Manager ISM V2.8.0.060, provided by Fujitsu Limited, stores the password for the proxy server in cleartext form to the product's maintenance data ismsnap CWE-312 under the following conditions. Using a proxy server that requires authentication in the...

Fujitsu Software Infrastructure Manager Security Vulnerability

Fujitsu Software Infrastructure Manager is an infrastructure manager from Fujitsu Japan. A security vulnerability exists in Fujitsu Software Infrastructure Manager, which arises from sensitive information being stored in plaintext in product maintenance data ismsnap...

PT-2023-5240 · Fujitsu · Fujitsu Software Infrastructure Manager Essential Edition +2

Name of the Vulnerable Software and Affected Versions: Fujitsu Software Infrastructure Manager Advanced Edition version 2.8.0.060 Fujitsu Software Infrastructure Manager Advanced Edition for PRIMEFLEX version 2.8.0.060 Fujitsu Software Infrastructure Manager Essential Edition version 2.8.0.060...