CVE-2023-1995

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-1995
Insufficient Logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Addtional Function, HiRDB Structured Data Access Facility.This issue affects HiRDB Server: before 09-60-39, before 09-65-23, before 09-66-17, before 10-01-10, before 10-03-12, before 10-04-06, before 10-05-06, before 10-06-02; HiRDB Server With Addtional Function: before 09-60-2M, before 09-65-/W , before 09-66-/Q ; HiRDB Structured Data Access Facility: before 09-60-39, before 10-03-12, before 10-04-06, before 10-06-02.

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.6 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-133/index.html Vendor Advisory
https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-133/index.html Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
OR cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
OR cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
History

21 Nov 2024, 07:40

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.5 		v2 : unknown
v3 : 5.3
References () https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-133/index.html - Vendor Advisory () https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-133/index.html - Vendor Advisory

27 Sep 2023, 15:16

Type Values Removed Values Added
Summary Insufficient Logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Addtional Function, HiRDB Structured Data Access Facility.This issue affects HiRDB Server: before 09-60-39, before 09-65-23, before 10-01-10, before 10-03-12, before 10-04-06, before 10-05-06, before 10-06-02; HiRDB Server With Addtional Function: before 09-60-2M, before 09-65-/W; HiRDB Structured Data Access Facility: before 09-60-39, before 10-03-12, before 10-04-06, before 10-06-02. Insufficient Logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Addtional Function, HiRDB Structured Data Access Facility.This issue affects HiRDB Server: before 09-60-39, before 09-65-23, before 09-66-17, before 10-01-10, before 10-03-12, before 10-04-06, before 10-05-06, before 10-06-02; HiRDB Server With Addtional Function: before 09-60-2M, before 09-65-/W , before 09-66-/Q ; HiRDB Structured Data Access Facility: before 09-60-39, before 10-03-12, before 10-04-06, before 10-06-02.

05 Sep 2023, 18:51

Type Values Removed Values Added
CWE NVD-CWE-Other
First Time Linux linux Kernel
Oracle
Oracle solaris
Hitachi hirdb Structured Data Access Facility
Hitachi hirdb Server
Microsoft windows
Hitachi
Ibm
Microsoft
Hp hp-ux
Linux
Ibm aix
Hp
Hitachi hirdb Server With Additional Function
References (MISC) https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-133/index.html - (MISC) https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-133/index.html - Vendor Advisory
CPE cpe:2.3:a:hitachi:hirdb_structured_data_access_facility:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server_with_additional_function:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:hirdb_server:*:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.5

29 Aug 2023, 02:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-08-29 02:15

Updated : 2024-11-21 07:40

NVD link : CVE-2023-1995

Mitre link : CVE-2023-1995

CVE.ORG link : CVE-2023-1995

JSON object : View

Products Affected

ibm

  • aix

hitachi

  • hirdb_server_with_additional_function
  • hirdb_server
  • hirdb_structured_data_access_facility

oracle

  • solaris

microsoft

  • windows

hp

  • hp-ux

linux

  • linux_kernel
CWE
CWE-778

Insufficient Logging

NVD-CWE-Other