CVE-2022-34881

Name of the Vulnerable Software and Affected Versions Hitachi JP1/Automatic Operation versions 10-00 through 10-54-03 Hitachi JP1/Automatic Operation versions 11-00 through 11-51-08 Hitachi JP1/Automatic Operation versions 12-00 through 12-60-00

Description The issue allows local users to gain sensitive information due to the generation of error messages containing sensitive information. This can be exploited by local users.

Recommendations For versions 10-00 through 10-54-03, consider restricting access to sensitive information until a patch is available. For versions 11-00 through 11-51-08, consider implementing additional logging and monitoring to detect potential exploitation. For versions 12-00 through 12-60-00, consider disabling the feature that generates error messages containing sensitive information until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.