HitachiCVE-2022-3884CVE-2022-3884
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
AI Score
Confidence
High
EPSS
Percentile
5.1%
Incorrect Default Permissions vulnerability in Hitachi Ops Center Analyzer on Windows (Hitachi Ops Center Analyzer RAID Agent component) allows local users to read and write specific files.This issue affects Hitachi Ops Center Analyzer: from 10.9.0-00 before 10.9.0-01.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hitachi | ops_center_analyzer | * | cpe:2.3:a:hitachi:ops_center_analyzer:*:*:*:*:*:*:*:* |
| microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:x64:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"modules": [
"Hitachi Ops Center Analyzer RAID Agent"
],
"platforms": [
"Windows"
],
"product": "Hitachi Ops Center Analyzer",
"vendor": "Hitachi",
"versions": [
{
"changes": [
{
"at": "10.9.0-01",
"status": "unaffected"
}
],
"lessThan": "10.9.0-01",
"status": "affected",
"version": "10.9.0-00",
"versionType": "custom"
}
]
}
]Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
AI Score
Confidence
High
EPSS
Percentile
5.1%