CVE-2024-10205

Name of the Vulnerable Software and Affected Versions Hitachi Ops Center Analyzer versions 10.0.0-00 through 11.0.3-00 Hitachi Infrastructure Analytics Advisor versions 2.1.0-00 through 4.4.0-00

Description The issue is related to an authentication bypass, which may allow a remote attacker to gain unauthorized access to protected information. This is due to a lack of authentication for a critical function in the affected software.

Recommendations For Hitachi Ops Center Analyzer versions 10.0.0-00 through 11.0.3-00, update to version 11.0.3-00 or later. For Hitachi Infrastructure Analytics Advisor versions 2.1.0-00 through 4.4.0-00, update to a version later than 4.4.0-00. As a temporary workaround, consider restricting access to the critical function that lacks authentication until a patch is available.