Lucene search

HitachiCVELIST:CVE-2024-21840

HistoryJan 30, 2024 - 2:08 a.m.

CVE-2024-21840 Directory and File Permission Vulnerability in Hitachi Storage Plug-in for VMware vCenter

2024-01-3002:08:34

CWE-276

Hitachi

www.cve.org

hitachi

storage plug-in

vmware vcenter

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Hitachi Storage Plug-in for VMware vCenter",
    "vendor": "Hitachi",
    "versions": [
      {
        "changes": [
          {
            "at": "04.10.0",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "04.9.2",
        "status": "affected",
        "version": "04.0.0",
        "versionType": "custom"
      }
    ]
  }
]

References

www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-108/index.html

7.9 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L

7.9 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVELIST:CVE-2024-21840