CVE-2022-34883

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Hitachi RAID Manager Storage Replication Adapter versions 02.01.04 through 02.03.01 on Windows Hitachi RAID Manager Storage Replication Adapter versions 02.05.00 through 02.05.00 on Windows and Docker

Description The issue allows remote authenticated users to execute arbitrary OS commands due to an OS Command Injection vulnerability in Hitachi RAID Manager Storage Replication Adapter.

Recommendations For Hitachi RAID Manager Storage Replication Adapter versions 02.01.04 through 02.03.01 on Windows, update to version 02.03.02 or later. For Hitachi RAID Manager Storage Replication Adapter versions 02.05.00 through 02.05.00 on Windows and Docker, update to version 02.05.01 or later.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2022-34883

Affected Products

Hitachi Raid Manager Storage Replication Adapter

CVE-2022-34883

Weakness Enumeration

Related Identifiers

Affected Products

References · 6