/

CVE-2023-1995 Report - Details, Severity, & Advisories

CVE-2023-1995 Report - Details, Severity, & Advisories

Twingate Team

Apr 11, 2024

CVE-2023-1995 is a vulnerability affecting Hitachi HiRDB Server, HiRDB Server With Additional Function, and HiRDB Structured Data Access Facility. It is an Insufficient Logging vulnerability with a severity rating of 7.5 HIGH by NIST and 5.3 MEDIUM by Hitachi, Ltd. The vulnerability impacts systems running various versions of the affected software on operating systems such as HP-UX, Linux Kernel, Microsoft Windows, and IBM AIX.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, check if you're using Hitachi HiRDB Server, HiRDB Server With Additional Function, or HiRDB Structured Data Access Facility. Affected versions include HiRDB Server before 10-06-02, HiRDB Server With Additional Function before 09-66-/Q, and HiRDB Structured Data Access Facility before 10-06-02. These systems may be running on operating systems like HP-UX, Linux Kernel, Microsoft Windows, IBM AIX, and Oracle Solaris. No Apple products are mentioned in relation to this vulnerability.

What should I do if I'm affected?

If you're affected by the vulnerability, it's important to take action. Upgrade your Hitachi HiRDB software to the appropriate fixed version. Contact your Hitachi support service representative for details on the fixed products and always reference the latest information, as security issues constantly change.

Is CVE-2023-1995 in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-1995 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog. This insufficient logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Additional Function, and HiRDB Structured Data Access Facility was published on August 28, 2023. There is no due date or required action provided, but upgrading to fixed versions of the affected software is recommended to mitigate the vulnerability.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as NVD-CWE-Other and CWE-778. These identifiers help classify the vulnerability's nature and source.

For more details

CVE-2023-1995 is a significant vulnerability affecting Hitachi HiRDB products, with varying severity ratings from NIST and Hitachi. To better understand the vulnerability's description, severity, technical details, and known affected software configurations, refer to the NVD page or links below for comprehensive information.

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

CVE-2023-1995 Report - Details, Severity, & Advisories

CVE-2023-1995 Report - Details, Severity, & Advisories

Twingate Team

Apr 11, 2024

CVE-2023-1995 is a vulnerability affecting Hitachi HiRDB Server, HiRDB Server With Additional Function, and HiRDB Structured Data Access Facility. It is an Insufficient Logging vulnerability with a severity rating of 7.5 HIGH by NIST and 5.3 MEDIUM by Hitachi, Ltd. The vulnerability impacts systems running various versions of the affected software on operating systems such as HP-UX, Linux Kernel, Microsoft Windows, and IBM AIX.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, check if you're using Hitachi HiRDB Server, HiRDB Server With Additional Function, or HiRDB Structured Data Access Facility. Affected versions include HiRDB Server before 10-06-02, HiRDB Server With Additional Function before 09-66-/Q, and HiRDB Structured Data Access Facility before 10-06-02. These systems may be running on operating systems like HP-UX, Linux Kernel, Microsoft Windows, IBM AIX, and Oracle Solaris. No Apple products are mentioned in relation to this vulnerability.

What should I do if I'm affected?

If you're affected by the vulnerability, it's important to take action. Upgrade your Hitachi HiRDB software to the appropriate fixed version. Contact your Hitachi support service representative for details on the fixed products and always reference the latest information, as security issues constantly change.

Is CVE-2023-1995 in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-1995 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog. This insufficient logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Additional Function, and HiRDB Structured Data Access Facility was published on August 28, 2023. There is no due date or required action provided, but upgrading to fixed versions of the affected software is recommended to mitigate the vulnerability.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as NVD-CWE-Other and CWE-778. These identifiers help classify the vulnerability's nature and source.

For more details

CVE-2023-1995 is a significant vulnerability affecting Hitachi HiRDB products, with varying severity ratings from NIST and Hitachi. To better understand the vulnerability's description, severity, technical details, and known affected software configurations, refer to the NVD page or links below for comprehensive information.

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

CVE-2023-1995 Report - Details, Severity, & Advisories

Twingate Team

Apr 11, 2024

CVE-2023-1995 is a vulnerability affecting Hitachi HiRDB Server, HiRDB Server With Additional Function, and HiRDB Structured Data Access Facility. It is an Insufficient Logging vulnerability with a severity rating of 7.5 HIGH by NIST and 5.3 MEDIUM by Hitachi, Ltd. The vulnerability impacts systems running various versions of the affected software on operating systems such as HP-UX, Linux Kernel, Microsoft Windows, and IBM AIX.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, check if you're using Hitachi HiRDB Server, HiRDB Server With Additional Function, or HiRDB Structured Data Access Facility. Affected versions include HiRDB Server before 10-06-02, HiRDB Server With Additional Function before 09-66-/Q, and HiRDB Structured Data Access Facility before 10-06-02. These systems may be running on operating systems like HP-UX, Linux Kernel, Microsoft Windows, IBM AIX, and Oracle Solaris. No Apple products are mentioned in relation to this vulnerability.

What should I do if I'm affected?

If you're affected by the vulnerability, it's important to take action. Upgrade your Hitachi HiRDB software to the appropriate fixed version. Contact your Hitachi support service representative for details on the fixed products and always reference the latest information, as security issues constantly change.

Is CVE-2023-1995 in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-1995 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog. This insufficient logging vulnerability in Hitachi HiRDB Server, HiRDB Server With Additional Function, and HiRDB Structured Data Access Facility was published on August 28, 2023. There is no due date or required action provided, but upgrading to fixed versions of the affected software is recommended to mitigate the vulnerability.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as NVD-CWE-Other and CWE-778. These identifiers help classify the vulnerability's nature and source.

For more details

CVE-2023-1995 is a significant vulnerability affecting Hitachi HiRDB products, with varying severity ratings from NIST and Hitachi. To better understand the vulnerability's description, severity, technical details, and known affected software configurations, refer to the NVD page or links below for comprehensive information.