CVE-2023-1995

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-1995
Insufficient Logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Addtional Function, HiRDB Structured Data Access Facility.This issue affects HiRDB Server: before 09-60-39, before 09-65-23, before 09-66-17, before 10-01-10, before 10-03-12, before 10-04-06, before 10-05-06, before 10-06-02; HiRDB Server With Addtional Function: before 09-60-2M, before 09-65-/W , before 09-66-/Q ; HiRDB Structured Data Access Facility: before 09-60-39, before 10-03-12, before 10-04-06, before 10-06-02.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-133/index.html Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
OR cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
History

27 Sep 2023, 15:16

Type Values Removed Values Added
Summary Insufficient Logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Addtional Function, HiRDB Structured Data Access Facility.This issue affects HiRDB Server: before 09-60-39, before 09-65-23, before 10-01-10, before 10-03-12, before 10-04-06, before 10-05-06, before 10-06-02; HiRDB Server With Addtional Function: before 09-60-2M, before 09-65-/W; HiRDB Structured Data Access Facility: before 09-60-39, before 10-03-12, before 10-04-06, before 10-06-02. Insufficient Logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Addtional Function, HiRDB Structured Data Access Facility.This issue affects HiRDB Server: before 09-60-39, before 09-65-23, before 09-66-17, before 10-01-10, before 10-03-12, before 10-04-06, before 10-05-06, before 10-06-02; HiRDB Server With Addtional Function: before 09-60-2M, before 09-65-/W , before 09-66-/Q ; HiRDB Structured Data Access Facility: before 09-60-39, before 10-03-12, before 10-04-06, before 10-06-02.

05 Sep 2023, 18:51

Type Values Removed Values Added
References (MISC) https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-133/index.html - (MISC) https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-133/index.html - Vendor Advisory
First Time Linux
Hitachi hirdb Server
Ibm aix
Hitachi
Microsoft
Hp hp-ux
Oracle
Hitachi hirdb Structured Data Access Facility
Hp
Linux linux Kernel
Ibm
Microsoft windows
Oracle solaris
Hitachi hirdb Server With Additional Function
CWE NVD-CWE-Other
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.5
CPE cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*

29 Aug 2023, 02:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-08-29 02:15

Updated : 2023-12-10 15:14

NVD link : CVE-2023-1995

Mitre link : CVE-2023-1995

CVE.ORG link : CVE-2023-1995

JSON object : View

Products Affected

hitachi

  • hirdb_structured_data_access_facility
  • hirdb_server
  • hirdb_server_with_additional_function

oracle

  • solaris

linux

  • linux_kernel

microsoft

  • windows

hp

  • hp-ux

ibm

  • aix
CWE
NVD-CWE-Other CWE-778

Insufficient Logging