CVE-2023-6814

Summary

Insertion of Sensitive Information into Log File vulnerability in Hitachi Cosminexus Component Container allows local users to gain sensitive information.This issue affects Cosminexus Component Container: from 11-30 before 11-30-05, from 11-20 before 11-20-07, from 11-10 before 11-10-10, from 11-00 before 11-00-12, All versions of V8 and V9.

Affected Software

VendorProductVersion RangeStatus
HitachiCosminexus Component Container11-30 < 11-30-05affected
HitachiCosminexus Component Container11-20 < 11-20-07affected
HitachiCosminexus Component Container11-10 < 11-10-10affected
HitachiCosminexus Component Container11-00 < 11-00-12affected
HitachiCosminexus Component Container08-00 <= 09-*affected

Weaknesses

  • CWE-532: CWE-532 Insertion of Sensitive Information into Log File

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References