Lucene search

[email protected]NVD:CVE-2020-36605

HistoryNov 01, 2022 - 3:15 a.m.

CVE-2020-36605

2022-11-0103:15:10

CWE-276

[email protected]

web.nvd.nist.gov

hitachi

infrastructure analytics advisor

ops center analyzer

ops center viewpoint

linux

cve-2020-36605

vulnerability

permissions

local users

files

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON

Incorrect Default Permissions vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component), Hitachi Ops Center Viewpoint on Linux (Viewpoint RAID Agent component) allows local users to read and write specific files.

This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00; Hitachi Ops Center Viewpoint: from 10.8.0-00 before 10.9.0-00.

Affected configurations

NVD

Node

hitachiinfrastructure_analytics_advisorRange2.0.0-00–4.4.0-00

AND

linuxlinux_kernelMatch-x64

microsoftwindowsMatch-x64

Node

hitachiops_center_analyzerRange10.0.0-00–10.9.0-00

AND

linuxlinux_kernelMatch-x64

Node

hitachiops_center_viewpointRange10.8.0-00–10.9.0-00

AND

linuxlinux_kernelMatch-x64

References

www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2020-36605

prion1 cve1 cvelist1