CVE-2024-5963

Published: Aug 6, 2024Modified: Aug 6, 2024

6.7

Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.8 / Impact: 5.9

Source: hirt@hitachi.co.jp (Secondary)

Description

Unquoted Executable Path vulnerability in Hitachi Device Manager on Windows (Device Manager Server component).This issue affects Hitachi Device Manager: before 8.8.7-00.

Related CWEs

CWE-428

Unquoted Search Path or Element

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

References (1)

https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-135/index.html

Source: hirt@hitachi.co.jp

Timeline

No history available yet.