← voltar
CVE-2023-39379

CVE-2023-39379

EPSS 0.4%
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
04 ago 2023Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Fujitsu Software Infrastructure Manager (ISM) stores sensitive information at the product's maintenance data (ismsnap) in cleartext form. As a result, the password for the proxy server that is configured in ISM may be retrieved. Affected products and versions are as follows: Fujitsu Software Infrastructure Manager Advanced Edition V2.8.0.060, Fujitsu Software Infrastructure Manager Advanced Edition for PRIMEFLEX V2.8.0.060, and Fujitsu Software Infrastructure Manager Essential Edition V2.8.0.060.
Produtos afetados
Fujitsu Limited · Fujitsu Software Infrastructure Manager Advanced EditionFujitsu Limited · Fujitsu Software Infrastructure Manager Advanced Edition for PRIMEFLEXFujitsu Limited · Fujitsu Software Infrastructure Manager Essential Edition

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://jvn.jp/en/jp/JVN38847224/https://support.ts.fujitsu.com/IndexProdSecurity.asp?lng=en