admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2023/CVE-2023-3440.md

45 lines
6.7 KiB
Markdown
Raw Normal View History

Update Sat May 25 21:48:12 CEST 2024
2024-05-25 21:48:12 +02:00
### [CVE-2023-3440](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3440)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Application%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Domino&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Enterprise%20Applications&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20HiRDB&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20IBM%20Lotus%20Domino&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20IBM%20WebSphere%20Application%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20IBM%20WebSphere%20MQ&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20JP1%2FAJS3&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Microsoft(R)%20Exchange%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Microsoft(R)%20Internet%20Information%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Microsoft(R)%20SQL%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20OpenTP1&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Oracle%20WebLogic%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Oracle&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Platform&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Service%20Response&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Transaction%20System&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20Virtual%20Machine&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Agent%20Option%20for%20uCosminexus%20Application%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Base&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Manager&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Remote%20Monitor%20for%20Microsoft(R)%20SQL%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Remote%20Monitor%20for%20Oracle&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Remote%20Monitor%20for%20Platform&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=JP1%2FPerformance%20Management%20-%20Remote%20Monitor%20for%20Virtual%20Machine&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=09-00%3C%3D%2009-00-*%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=09-00%3C%3D%2009-01-*%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=09-00%3C%3D%2010-00-*%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=09-00%3C%3D%2010-50-*%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-276%20Incorrect%20Default%20Permissions&color=brighgreen)
### Description
Incorrect Default Permissions vulnerability in Hitachi JP1/Performance Management on Windows allows File Manipulation.This issue affects JP1/Performance Management - Manager: from 09-00 before 12-50-07; JP1/Performance Management - Base: from 09-00 through 10-50-*; JP1/Performance Management - Agent Option for Application Server: from 11-00 before 11-50-16; JP1/Performance Management - Agent Option for Enterprise Applications: from 09-00 before 12-00-14; JP1/Performance Management - Agent Option for HiRDB: from 09-00 before 12-00-14; JP1/Performance Management - Agent Option for IBM Lotus Domino: from 10-00 before 11-50-16; JP1/Performance Management - Agent Option for Microsoft(R) Exchange Server: from 09-00 before  12-00-14; JP1/Performance Management - Agent Option for Microsoft(R) Internet Information Server: from 09-00 before 12-00-14; JP1/Performance Management - Agent Option for Microsoft(R) SQL Server: from 09-00 before 12-50-07; JP1/Performance Management - Agent Option for Oracle: from 09-00 before  12-10-08; JP1/Performance Management - Agent Option for Platform: from 09-00 before 12-50-07; JP1/Performance Management - Agent Option for Service Response: from 09-00 before 11-50-16; JP1/Performance Management - Agent Option for Transaction System: from 11-00 before 12-00-14; JP1/Performance Management - Remote Monitor for Microsoft(R) SQL Server: from 09-00 before 12-50-07; JP1/Performance Management - Remote Monitor for Oracle: from 09-00 before 12-10-08; JP1/Performance Management - Remote Monitor for Platform: from 09-00 before 12-10-08; JP1/Performance Management - Remote Monitor for Virtual Machine: from 10-00 before 12-50-07; JP1/Performance Management - Agent Option for Domino: from 09-00 through 09-00-*; JP1/Performance Management - Agent Option for IBM WebSphere Application Server: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for IBM WebSphere MQ: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for JP1/AJS3: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for OpenTP1: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for Oracle WebLogic Server: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for uCosminexus Application Server: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for Virtual Machine: from 09-00 through 09-01-*.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds
Reference in New Issue Copy Permalink