A vulnerability exists in the SDM600 API web services authorization validation implementation.
An attacker who successfully exploits the vulnerability could read data directly from a data store that is not restricted, or insufficiently protected, having access to sensitive data.
This issue affects: All SDM600 versions prior to version 1.2 FP3 HF4 (Build Nr. 1.2.23000.291)
List of CPEs:
- cpe:2.3:a:hitachienergy:sdm600:1.0:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.1:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.9002.257:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.10002.257:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.11002.149:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.12002.222:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.13002.72:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.44:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.92:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.108:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.182:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.257:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.342:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.447:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.481:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.506:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.14002.566:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.20000.3174:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.21000.291:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.21000.931:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.21000.105:::::::*
- cpe:2.3:a:hitachienergy:sdm600:1.2.23000.291:::::::*
Affected Software
Name |
Vendor |
Start Version |
End Version |
Sdm600 |
Hitachienergy |
1.0 (including) |
1.2.23000.291 (excluding) |
References