Rewterz Threat Advisory – ICS: Hitachi Vantara System Management Unit SMU Vulnerability

Rewterz Threat Advisory – Multiple Google Chrome Vulnerabilities

December 14, 2023

Rewterz Threat Alert – North Korean APT Kimsuky Aka Black Banshee – Active IOCs

December 14, 2023

Rewterz Threat Advisory – ICS: Hitachi Vantara System Management Unit SMU Vulnerability

Severity

High

Analysis Summary

CVE-2023-6538

Hitachi Vantara System Management Unit (SMU) could allow a remote authenticated attacker to obtain sensitive information, caused by improper authorization validation. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to obtain SMU configuration backup information, and use this information to launch further attacks against the affected system.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2023-6538

Affected Vendors

Hitachi

Affected Products

Hitachi Vantara System Management Unit (SMU) 14.8

Remediation

Upgrade to the latest version of System Management Unit (SMU), available from the Hitachi Vantara Website.

Hitachi Vantara Website

Rewterz Threat Advisory – Multiple Google Chrome Vulnerabilities

Rewterz Threat Alert – North Korean APT Kimsuky Aka Black Banshee – Active IOCs

Rewterz Threat Advisory – ICS: Hitachi Vantara System Management Unit SMU Vulnerability

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan