Hitachi Ops Center Common Services Authentication Credentials Leakage Vulnerability
CVE-2024-45068

7.1HIGH

Key Information:

Vendor: Hitachi
Status: Hitachi Ops Center Common Services; Hitachi Ops Center Ova
Vendor: CVE Published:; 3 December 2024

Summary

An authentication credentials leakage vulnerability has been identified in Hitachi Ops Center Common Services and the associated OVA deployment. This vulnerability allows unauthorized access to sensitive information, potentially compromising system security. Users operating versions of Hitachi Ops Center Common Services from 10.9.3-00 before 11.0.3-00 and those utilizing Hitachi Ops Center OVA from 10.9.3-00 before 11.0.2-01 are particularly at risk. It is crucial for administrators to assess their systems and apply the necessary updates to mitigate potential threats.

Affected Version(s)

Hitachi Ops Center Common Services Linux 10.9.3-00 < 11.0.3-00

Hitachi Ops Center OVA Linux 10.9.3-00 < 11.0.2-01

References

https://www.hitachi.com/products/it/software/security/inf...

vendor-advisory

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 3, 2024
Vulnerability Reserved
Oct 22, 2024

Collectors

NVD DatabaseMitre Database