CVE-2023-5514

medium

Description

The response messages received from the eSOMS report generation using certain parameter queries with full file path can be abused for enumerating the local file system structure.

References

https://publisher.hitachienergy.com/preview?DocumentId=8DBD000175&languageCode=en&Preview=true

Details

Source: Mitre, NVD

Published: 2023-11-01

Updated: 2023-11-08

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N