Directory and File Permission Vulnerability in Hitachi Storage Plug-in for VMware vCenter
CVE-2024-21840
7.1HIGH
Key Information
- Vendor
- Hitachi
- Status
- Hitachi Storage Plug-in for VMware vCenter
- Vendor
- CVE Published:
- 30 January 2024
Summary
Incorrect Default Permissions vulnerability in Hitachi Storage Plug-in for VMware vCenter allows local users to read and write specific files. This issue affects Hitachi Storage Plug-in for VMware vCenter: from 04.0.0 through 04.9.2.
Affected Version(s)
Hitachi Storage Plug-in for VMware vCenter <= 04.9.2
CVSS V3.1
Score:
7.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database