Lucene search

K
cve[email protected]CVE-2022-4041
HistoryJan 31, 2023 - 2:15 a.m.

CVE-2022-4041

2023-01-3102:15:08
CWE-269
CWE-266
CWE-287
web.nvd.nist.gov
16
cve-2022-4041
incorrect privilege assignment
hitachi
storage
vmware
vcenter
vulnerability
privilege escalation
nvd.

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.6%

Incorrect Privilege Assignment vulnerability in Hitachi Storage Plug-in for VMware vCenter allows remote authenticated users to cause privilege escalation.
This issue affects Hitachi Storage Plug-in for VMware vCenter: from 04.8.0 before 04.9.1.

Affected configurations

NVD
Node
hitachistorage_plug-inMatch04.8.0vmware_vcenter
OR
hitachistorage_plug-inMatch04.9.0vmware_vcenter

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Hitachi Storage Plug-in for VMware vCenter",
    "vendor": "Hitachi",
    "versions": [
      {
        "changes": [
          {
            "at": "04.9.1",
            "status": "unaffected"
          }
        ],
        "lessThan": "04.9.1",
        "status": "affected",
        "version": "04.8.0",
        "versionType": "custom"
      }
    ]
  }
]

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.6%

Related for CVE-2022-4041