Vulnerability in Hitachi Energy Foxman-un
CVE-2022-3928
Hardcoded credential is found in affected products' message queue. An attacker that manages to exploit this vulnerability will be able to access data to the internal message queue. This issue affects * FOXMAN-UN product: FOXMAN-…
EPSS: 0.002 (11.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.1 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N.
Affected products
- Hitachi Energy Foxman-un — versions FOXMAN-UN R16A, FOXMAN-UN R15B, FOXMAN-UN R15A
- Hitachi Energy Unem — versions UNEM R16A, UNEM R15B, UNEM R15A
- Hitachienergy Foxman-un
- Hitachienergy Unem
Weakness classification (CWE)
References
- cybersecurity@hitachienergy.com (Mitigation, Vendor Advisory)
- cybersecurity@hitachienergy.com (Mitigation, Vendor Advisory)
Frequently asked questions
- What is CVE-2022-3928?
- CVE-2022-3928 is a high-severity vulnerability in Hitachi Energy Foxman-un, classified under Use of Hard-coded Credentials. CVSS score: 7.1/10. Published 2023-01-05.
- How severe is CVE-2022-3928?
- High severity. CVSS v3 base score is 7.1 out of 10.