CVE-2016-8648 has been assigned to this issue. This issue has been fixed in all currently supported versions of HITACHI INFRASTRUCTURE ANALYTICS ADVISOR and HITACHI OPC VIEWPOINT. Users of these products are advised to upgrade as soon as possible. VULNERABILITY DESCRIPTION This issue occurs when permissions on certain files are insufficient. With sufficient permissions, users can access these files and view or edit them.
Overview:
CVE-2016-8648 is a security flaw found in Hitachi Infrastructure Analytics Advisor (HITAIA) and Hitachi OPC Viewpoint. The issue occurs when certain files are not set to appropriate permissions. This issue can be exploited by an attacker to view or edit the files.
Vulnerable Systems and Impact
Any HITACHI INFRASTRUCTURE ANALYTICS ADVISOR, or a HITACHI OPC VIEWPOINT that has the vulnerable files available.
Traffic Analysis
This issue has been fixed in all currently supported versions of HITACHI INFRASTRUCTURE ANALYTICS ADVISOR and HITACHI OPC VIEWPOINT. Users of these products are advised to upgrade as soon as possible. VULNERABILITY DESCRIPTION This issue occurs when permissions on certain files are insufficient. With sufficient permissions, users can access these files and view or edit them.
CVE-2016-8648: Directory traversal vulnerability in HIFA
Directory traversal vulnerability in HIFA allows remote attackers to read arbitrary files via directory traversal sequences in the file names.
CVE-2020-36605: Directory traversal vulnerability in HIFA
Directory traversal vulnerability in HIFA allows remote attackers to read arbitrary files via directory traversal sequences in the file names.
Timeline
Published on: 11/01/2022 03:15:00 UTC
Last modified on: 11/02/2022 00:55:00 UTC