CVE-2023-39379

Published: Aug 4, 2023

Modified: Oct 21, 2024

PUBLISHED

Description

Fujitsu Software Infrastructure Manager (ISM) stores sensitive information at the product's maintenance data (ismsnap) in cleartext form. As a result, the password for the proxy server that is configured in ISM may be retrieved. Affected products and versions are as follows: Fujitsu Software Infrastructure Manager Advanced Edition V2.8.0.060, Fujitsu Software Infrastructure Manager Advanced Edition for PRIMEFLEX V2.8.0.060, and Fujitsu Software Infrastructure Manager Essential Edition V2.8.0.060.

Vendor	Product	Versions
Fujitsu Limited	Fujitsu Software Infrastructure Manager Advanced Edition	affected `V2.8.0.060`
Fujitsu Limited	Fujitsu Software Infrastructure Manager Advanced Edition for PRIMEFLEX	affected `V2.8.0.060`
Fujitsu Limited	Fujitsu Software Infrastructure Manager Essential Edition	affected `V2.8.0.060`

References

https://support.ts.fujitsu.com/IndexProdSecurity.asp?lng=en

https://jvn.jp/en/jp/JVN38847224/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-39379

Description

Affected Products

References