Hitachi Energy Esoms vulnerabilities

CVE-2023-5515 [MEDIUM] CWE-200 CVE-2023-5515: The responses for web queries with certain parameters disclose internal path of resources. This inf The responses for web queries with certain parameters disclose internal path of resources. This information can be used to learn internal structure of the application and to further plot attacks against web servers and deployed web applications.

CVE-2023-5516 [MEDIUM] CWE-200 CVE-2023-5516: Poorly constructed webap requests and URI components with special characters trigger unhandled erro Poorly constructed webap requests and URI components with special characters trigger unhandled errors and exceptions, disclosing information about the underlying technology and other sensitive information details. The website unintentionally reveals sensitive information including technical details like version Info, endpoints, backend server, Interna

CVE-2023-5514 [MEDIUM] CWE-209 CVE-2023-5514: The response messages received from the eSOMS report generation using certain parameter queries wit The response messages received from the eSOMS report generation using certain parameter queries with full file path can be abused for enumerating the local file system structure.