Lucene search

[email protected]NVD:CVE-2024-22385

HistoryJun 25, 2024 - 2:15 a.m.

CVE-2024-22385

2024-06-2502:15:10

CWE-276

[email protected]

web.nvd.nist.gov

hitachi

storage provider

vmware vcenter

default permissions

vulnerability

local users

specific files

cve-2024-22385

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

0.0004 Low

EPSS

Percentile

9.1%

JSON

Incorrect Default Permissions vulnerability in Hitachi Storage Provider for VMware vCenter allows local users to read and write specific files.This issue affects Hitachi Storage Provider for VMware vCenter: from 3.1.0 before 3.7.4.

References

www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-129/index.html

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2024-22385

vulnrichment1 cve1 cvelist1