Lucene search
HitachiCVE-2024-21840HistoryJan 30, 2024 - 3:15 a.m.
CVE-2024-21840
2024-01-3003:15:07
CWE-276
Hitachi
web.nvd.nist.gov
12
hitachi storage
vmware vcenter
cve-2024-21840
nvd
security vulnerability
file permissions
CVSS3
7.9
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
AI Score
6.8
Confidence
High
EPSS
0
Percentile
5.1%
Incorrect Default Permissions vulnerability in Hitachi Storage Plug-in for VMware vCenter allowsΒ local users to read and write specific files.
This issue affects Hitachi Storage Plug-in for VMware vCenter: from 04.0.0 through 04.9.2.
Affected configurations
Node
hitachistorage_plug-inRange04.0.0β04.10.0vmware_vcenter
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hitachi | storage_plug-in | * | cpe:2.3:a:hitachi:storage_plug-in:*:*:*:*:*:vmware_vcenter:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Hitachi Storage Plug-in for VMware vCenter",
"vendor": "Hitachi",
"versions": [
{
"changes": [
{
"at": "04.10.0",
"status": "unaffected"
}
],
"lessThanOrEqual": "04.9.2",
"status": "affected",
"version": "04.0.0",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-21840
2024-01-30 03:15:07
prion
prion
Design/Logic Flaw
2024-01-30 03:15:00
cvelist
cvelist
CVSS3
7.9
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
AI Score
6.8
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2024-21840