EIP-2026-101773
PRE-CVEHitachi NAS (HNAS) System Management Unit (SMU) Backup & Restore < 14.8.7825.01 - IDOR
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-101773. PoCs published by Arslan Masood.
AI-analyzed exploit summary This exploit leverages an Insecure Direct Object Reference (IDOR) vulnerability in Hitachi NAS (HNAS) System Management Unit (SMU) to download backup archives without proper authorization. It sends a crafted GET request with valid session cookies to retrieve sensitive backup files.
Description
Hitachi NAS (HNAS) System Management Unit (SMU) Backup & Restore < 14.8.7825.01 - IDOR
Exploits (1)
This exploit leverages an Insecure Direct Object Reference (IDOR) vulnerability in Hitachi NAS (HNAS) System Management Unit (SMU) to download backup archives without proper authorization. It sends a crafted GET request with valid session cookies to retrieve sensitive backup files.