Severe Authentication Bypass Vulnerability in Hitachi's Ops Center Analyzer and Infrastructure Analytics Advisor
CVE-2024-10205

9.4CRITICAL

Key Information:

Vendor: Hitachi
Status: Hitachi Ops Center Analyzer; Hitachi Infrastructure Analytics Advisor
Vendor: CVE Published:; 17 December 2024

What is CVE-2024-10205?

CVE-2024-10205 is a critical authentication bypass vulnerability identified in Hitachi's Ops Center Analyzer and Infrastructure Analytics Advisor software, primarily affecting Linux 64-bit versions. This vulnerability allows unauthorized access to sensitive components of both applications, potentially leading to data compromise and increased risk of malicious activity. Users of affected versions should apply security patches and consult the provided reference for mitigation measures.

Affected Version(s)

Hitachi Infrastructure Analytics Advisor Linux 2.1.0-00 <= 4.4.0-00

Hitachi Ops Center Analyzer Linux 10.0.0-00 < 11.0.3-00

References

https://www.hitachi.com/products/it/software/security/inf...

vendor-advisory

CVSS V3.1

Score:

9.4

Severity:

CRITICAL

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 17, 2024