JVNDB-2022-002443

[Japanese]
JVNDB-2022-002443
Privilege Escalation Vulnerability in Hitachi Storage Plug-in for VMware vCenter
Overview
A privilege escalation vulnerability (CVE-2022-2637) exists in Hitachi Storage Plug-in for VMware vCenter.
CVSS Severity (What is CVSS?)
CVSS V3 Severity: Base Metrics 5.4 (Medium) [IPA Score] Attack Vector: Network Attack Complexity: High Privileges Required: Low User Interaction: Required Scope: Unchanged Confidentiality Impact: None Integrity Impact: Low Availability Impact: High
Affected Products

Hitachi, Ltd Hitachi Storage Plug-in
Please refer to Vendor Information for more details.
Impact
Regarding the impact of the vulnerability, please refer to the vendor advisory.
Solution
Please refer to the 'Vendor Information' section for the official countermeasure and take appropriate action.
Vendor Information
Hitachi, Ltd Hitachi Software Vulnerability Information : hitachi-sec-2022-131
CWE (What is CWE?)
No Mapping(CWE-noinfo) [IPA Evaluation]
CVE (What is CVE?)
CVE-2022-2637
References

Revision History
[2022/10/05] Web page was published

Privilege Escalation Vulnerability in Hitachi Storage Plug-in for VMware vCenter