CVE-2020-36605

Incorrect Default Permissions vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component), Hitachi Ops Center Viewpoint on Linux (Viewpoint RAID Agent component) allows local users to read and write specific files. This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00; Hitachi Ops Center Viewpoint: from 10.8.0-00 before 10.9.0-00.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:hitachi:infrastructure_analytics_advisor:*:*:*:*:*:*:*:*
OR cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:x64:*

Configuration 2 (hide)

AND
cpe:2.3:a:hitachi:ops_center_analyzer:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:x64:*

Configuration 3 (hide)

AND
cpe:2.3:a:hitachi:ops_center_viewpoint:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:x64:*

History

07 Nov 2023, 03:22

Type Values Removed Values Added
Summary Incorrect Default Permissions vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component), Hitachi Ops Center Viewpoint on Linux (Viewpoint RAID Agent component) allows local users to read and write specific files. This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00; Hitachi Ops Center Viewpoint: from 10.8.0-00 before 10.9.0-00. Incorrect Default Permissions vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component), Hitachi Ops Center Viewpoint on Linux (Viewpoint RAID Agent component) allows local users to read and write specific files. This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00; Hitachi Ops Center Viewpoint: from 10.8.0-00 before 10.9.0-00.

01 Mar 2023, 15:41

Type Values Removed Values Added
References (MISC) https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html - (MISC) https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html - Vendor Advisory

17 Jan 2023, 05:15

Type Values Removed Values Added
Summary Incorrect Default Permissions vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component), Hitachi Ops Center Viewpoint on Linux (Viewpoint RAID Agent component) allows local users to read and write specific files. Incorrect Default Permissions vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component), Hitachi Ops Center Viewpoint on Linux (Viewpoint RAID Agent component) allows local users to read and write specific files. This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00; Hitachi Ops Center Viewpoint: from 10.8.0-00 before 10.9.0-00.
References
  • {'url': 'https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2022-134/index.html', 'name': 'https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2022-134/index.html', 'tags': ['Vendor Advisory'], 'refsource': 'MISC'}
  • (MISC) https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html -

02 Nov 2022, 00:55

Type Values Removed Values Added
CWE CWE-276
CPE cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:x64:*
cpe:2.3:a:hitachi:ops_center_viewpoint:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:infrastructure_analytics_advisor:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ops_center_analyzer:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:x64:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 4.4
First Time Hitachi ops Center Viewpoint
Linux
Hitachi infrastructure Analytics Advisor
Hitachi ops Center Analyzer
Linux linux Kernel
Hitachi
Microsoft windows
Microsoft
References (MISC) https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2022-134/index.html - (MISC) https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2022-134/index.html - Vendor Advisory

01 Nov 2022, 03:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-01 03:15

Updated : 2023-12-10 14:35


NVD link : CVE-2020-36605

Mitre link : CVE-2020-36605

CVE.ORG link : CVE-2020-36605


JSON object : View

Products Affected

hitachi

  • ops_center_viewpoint
  • ops_center_analyzer
  • infrastructure_analytics_advisor

linux

  • linux_kernel

microsoft

  • windows
CWE
CWE-276

Incorrect Default Permissions