Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-41552

Server-Side Request Forgery (SSRF) vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Data Center Analytics, Analytics probe components), Hitachi Ops Center Analyzer on Linux (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe components) allows Server Side Request Forgery. This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00.

Published

2022-11-01T03:15:10.897

Last Modified

2024-11-21T07:23:22.850

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-918
Type: Primary
CWE-918

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	hitachi	infrastructure_analytics_advisor	≤ 4.4.0-00	Yes
Operating System	linux	linux_kernel	-	No
Operating System	microsoft	windows	-	No
Application	hitachi	ops_center_analyzer	< 10.9.0-00	Yes
Operating System	linux	linux_kernel	-	No
Application	hitachi	ops_center_viewpoint	< 10.9.0-00	Yes
Operating System	linux	linux_kernel	-	No

References

https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html Vendor Advisory ([email protected])
https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)