CVE-2024-28023

MEDIUM

Message Queueing Mechanism - Info Disclosure

Title source: llm

Description

A vulnerability exists in the message queueing mechanism that if exploited can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.

References (1)

[Various Sources] https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true

Scores

CVSS v3 5.7

EPSS 0.0003

EPSS Percentile 7.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-259

Status published

Products (7)

Hitachi Energy/FOXMAN-UN FOXMAN-UN R15B PC4

Hitachi Energy/FOXMAN-UN FOXMAN-UN R15B PC5

Hitachi Energy/FOXMAN-UN FOXMAN-UN R16B PC2

Hitachi Energy/FOXMAN-UN FOXMAN-UN R16B PC3 - FOXMAN-UN R16B PC4

Hitachi Energy/UNEM UNEM R15B PC4 (2 CPE variants)

Hitachi Energy/UNEM UNEM R16B PC2

Hitachi Energy/UNEM UNEM R16B PC3 - UNEM R16B PC4

Published Jun 11, 2024

Tracked Since Feb 18, 2026