Vulnerability Details CVE-2021-40338
Hitachi Energy LinkOne product, has a vulnerability due to a web server misconfiguration, that enables debug mode and reveals the full path of the filesystem directory when an attacker generates errors during a query operation. This issue affects: Hitachi Energy LinkOne 3.20; 3.22; 3.23; 3.24; 3.25; 3.26.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.6%
CVSS Severity
CVSS v3 Score 3.7
CVSS v2 Score 5.0
References
Products affected by CVE-2021-40338
-
cpe:2.3:a:hitachi:linkone:3.20
-
cpe:2.3:a:hitachi:linkone:3.22
-
cpe:2.3:a:hitachi:linkone:3.23
-
cpe:2.3:a:hitachi:linkone:3.24
-
cpe:2.3:a:hitachi:linkone:3.25
-
cpe:2.3:a:hitachi:linkone:3.26