CVE-2022-34883

OS Command Injection vulnerability in Hitachi RAID Manager Storage Replication Adapter allows remote authenticated users to execute arbitrary OS commands. This issue affects: Hitachi RAID Manager Storage Replication Adapter 02.01.04 versions prior to 02.03.02 on Windows; 02.05.00 versions prior to 02.05.01 on Windows and Docker.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:hitachi:raid_manager_storage_replication_adapter:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:raid_manager_storage_replication_adapter:02.05.00:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:a:hitachi:raid_manager_storage_replication_adapter:02.05.00:*:*:*:*:*:*:*
cpe:2.3:a:docker:docker:-:*:*:*:*:*:*:*

History

21 Apr 2023, 10:15

Type Values Removed Values Added
References
  • {'url': 'https://www.hitachi.co.jp/products/it/storage-solutions/global/sec_info/2022/2022_307.html', 'name': 'https://www.hitachi.co.jp/products/it/storage-solutions/global/sec_info/2022/2022_307.html', 'tags': ['Mitigation', 'Vendor Advisory'], 'refsource': 'MISC'}
  • (MISC) https://www.hitachi.com/products/it/storage-solutions/sec_info/2022/2022_307.html -
Summary OS Command Injection vulnerability in Hitachi RAID Manager Storage Replication Adapter allows remote authenticated users to execute arbitrary OS commands. This issue affects: Hitachi RAID Manager Storage Replication Adapter 02.01.04 versions prior to 02.03.02 on Windows; 02.05.00 versions prior to 02.05.01 on Windows and Docker. OS Command Injection vulnerability in Hitachi RAID Manager Storage Replication Adapter allows remote authenticated users to execute arbitrary OS commands. This issue affects: Hitachi RAID Manager Storage Replication Adapter 02.01.04 versions prior to 02.03.02 on Windows; 02.05.00 versions prior to 02.05.01 on Windows and Docker.

13 Sep 2022, 13:08

Type Values Removed Values Added
First Time Microsoft
Hitachi
Hitachi raid Manager Storage Replication Adapter
Microsoft windows
Docker docker
Docker
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8
CWE CWE-78
References (MISC) https://www.hitachi.co.jp/products/it/storage-solutions/global/sec_info/2022/2022_307.html - (MISC) https://www.hitachi.co.jp/products/it/storage-solutions/global/sec_info/2022/2022_307.html - Mitigation, Vendor Advisory
CPE cpe:2.3:a:hitachi:raid_manager_storage_replication_adapter:02.05.00:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:a:docker:docker:-:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:raid_manager_storage_replication_adapter:*:*:*:*:*:*:*:*

06 Sep 2022, 07:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-09-06 07:15

Updated : 2023-12-10 14:35


NVD link : CVE-2022-34883

Mitre link : CVE-2022-34883

CVE.ORG link : CVE-2022-34883


JSON object : View

Products Affected

microsoft

  • windows

hitachi

  • raid_manager_storage_replication_adapter

docker

  • docker
CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')