CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2022-41552 – Server-Side Request Forgery Vulnerability in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer
https://notcve.org/view.php?id=CVE-2022-41552
Server-Side Request Forgery (SSRF) vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Data Center Analytics, Analytics probe components), Hitachi Ops Center Analyzer on Linux (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe components) allows Server Side Request Forgery. This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00. La vulnerabilidad de Server-Side Reqiest Forgery (SSRF) en Hitachi Infrastructure Analytics Advisor en Linux (Data Center Analytics, Analytics probe components), Hitachi Ops Center Analyzer en Linux (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe components) permite realizar Server-Side Request Forgery. Este problema afecta a Hitachi Infrastructure Analytics Advisor: desde 2.0.0-00 hasta 4.4.0-00; Analizador de Hitachi Ops Center: desde 10.0.0-00 antes de 10.9.0-00. • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 6.6EPSS: 0%CPEs: 2EXPL: 0CVE-2022-3191 – Information Exposure Vulnerability in Hitachi Ops Center Analyzer
https://notcve.org/view.php?id=CVE-2022-3191
Insertion of Sensitive Information into Log File vulnerability in Hitachi Ops Center Analyzer on Linux (Virtual Strage Software Agent component) allows local users to gain sensitive information. This issue affects Hitachi Ops Center Analyzer: from 10.8.1-00 before 10.9.0-00 La vulnerabilidad de inserción de información confidencial en un archivo de registro en Hitachi Ops Center Analyzer en Linux (componente Virtual Strage Software Agent) permite a los usuarios locales obtener información confidencial. Este problema afecta a Hitachi Ops Center Analyzer: desde 10.8.1-00 antes de 10.9.0-00 • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 6.6EPSS: 0%CPEs: 7EXPL: 0CVE-2020-36605 – File Permissions Vulnerability in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer, Hitachi Ops Center Viewpoint
https://notcve.org/view.php?id=CVE-2020-36605
Incorrect Default Permissions vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component), Hitachi Ops Center Viewpoint on Linux (Viewpoint RAID Agent component) allows local users to read and write specific files. This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00; Hitachi Ops Center Viewpoint: from 10.8.0-00 before 10.9.0-00. Vulnerabilidad de permisos predeterminados incorrectos en Hitachi Infrastructure Analytics Advisor en Linux (Analytics probe component), Hitachi Ops Center Analyzer en Linux (Analyzer probe component), Hitachi Ops Center Viewpoint en Linux (Viewpoint RAID Agent component) permite a los usuarios locales leer y escribir archivos específicos . Este problema afecta a Hitachi Infrastructure Analytics Advisor: desde 2.0.0-00 hasta 4.4.0-00; Hitachi Ops Center Analyzer: desde 10.0.0-00 antes de 10.9.0-00; Hitachi Ops Center Viewpoint: desde 10.8.0-00 antes de 10.9.0-00. • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html • CWE-276: Incorrect Default Permissions •