April 16, 2020
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2020-306
CVE-2020-0645 | Microsoft IIS Server Tampering Vulnerability
CVE-2020-0684 | LNK Remote Code Execution Vulnerability
CVE-2020-0690 | DirectX Elevation of Privilege Vulnerability
CVE-2020-0762 | Windows Defender Security Center Elevation of Privilege Vulnerability
CVE-2020-0763 | Windows Defender Security Center Elevation of Privilege Vulnerability
CVE-2020-0768 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0769 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2020-0770 | Windows ActiveX Installer Service Elevation of Privilege Vulnerability
CVE-2020-0771 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2020-0772 | Windows Error Reporting Elevation of Privilege Vulnerability
CVE-2020-0773 | Windows ActiveX Installer Service Elevation of Privilege Vulnerability
CVE-2020-0774 | Windows GDI Information Disclosure Vulnerability
CVE-2020-0775 | Windows Error Reporting Information Disclosure Vulnerability
CVE-2020-0776 | Windows Elevation of Privilege Vulnerability
CVE-2020-0777 | Windows Work Folder Service Elevation of Privilege Vulnerability
CVE-2020-0778 | Windows Network Connections Service Elevation of Privilege Vulnerability
CVE-2020-0779 | Windows Installer Elevation of Privilege Vulnerability
CVE-2020-0780 | Windows Network List Service Elevation of Privilege Vulnerability
CVE-2020-0781 | Windows UPnP Service Elevation of Privilege Vulnerability
CVE-2020-0783 | Windows UPnP Service Elevation of Privilege Vulnerability
CVE-2020-0785 | Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2020-0786 | Windows Tile Object Service Denial of Service Vulnerability
CVE-2020-0787 | Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability
CVE-2020-0788 | Win32k Elevation of Privilege Vulnerability
CVE-2020-0791 | Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2020-0793 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
CVE-2020-0797 | Windows Work Folder Service Elevation of Privilege Vulnerability
CVE-2020-0798 | Windows Installer Elevation of Privilege Vulnerability
CVE-2020-0799 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2020-0800 | Windows Work Folder Service Elevation of Privilege Vulnerability
CVE-2020-0801 | Media Foundation Memory Corruption Vulnerability
CVE-2020-0802 | Windows Network Connections Service Elevation of Privilege Vulnerability
CVE-2020-0803 | Windows Network Connections Service Elevation of Privilege Vulnerability
CVE-2020-0804 | Windows Network Connections Service Elevation of Privilege Vulnerability
CVE-2020-0806 | Windows Error Reporting Elevation of Privilege Vulnerability
CVE-2020-0807 | Media Foundation Memory Corruption Vulnerability
CVE-2020-0808 | Provisioning Runtime Elevation of Privilege Vulnerability
CVE-2020-0809 | Media Foundation Memory Corruption Vulnerability
CVE-2020-0810 | Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability
CVE-2020-0811 | Chakra Scripting Engine Memory Corruption Vulnerability
CVE-2020-0812 | Chakra Scripting Engine Memory Corruption Vulnerability
CVE-2020-0813 | Scripting Engine Information Disclosure Vulnerability
CVE-2020-0814 | Windows Installer Elevation of Privilege Vulnerability
CVE-2020-0816 | Microsoft Edge Memory Corruption Vulnerability
CVE-2020-0819 | Windows Device Setup Manager Elevation of Privilege Vulnerability
CVE-2020-0820 | Media Foundation Information Disclosure Vulnerability
CVE-2020-0822 | Windows Language Pack Installer Elevation of Privilege Vulnerability
CVE-2020-0823 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0824 | Internet Explorer Memory Corruption Vulnerability
CVE-2020-0825 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0826 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0827 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0828 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0829 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0830 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0831 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0832 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0833 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0834 | Windows ALPC Elevation of Privilege Vulnerability
CVE-2020-0840 | Windows Hard Link Elevation of Privilege Vulnerability
CVE-2020-0841 | Windows Hard Link Elevation of Privilege Vulnerability
CVE-2020-0842 | Windows Installer Elevation of Privilege Vulnerability
CVE-2020-0843 | Windows Installer Elevation of Privilege Vulnerability
CVE-2020-0844 | Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability
CVE-2020-0845 | Windows Network Connections Service Elevation of Privilege Vulnerability
CVE-2020-0847 | VBScript Remote Code Execution Vulnerability
CVE-2020-0848 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-0849 | Windows Hard Link Elevation of Privilege Vulnerability
CVE-2020-0853 | Windows Imaging Component Information Disclosure Vulnerability
CVE-2020-0854 | Windows Mobile Device Management Diagnostics Elevation of Privilege Vulnerability
CVE-2020-0857 | Windows Search Indexer Elevation of Privilege Vulnerability
CVE-2020-0858 | Windows Elevation of Privilege Vulnerability
CVE-2020-0859 | Windows Modules Installer Service Information Disclosure Vulnerability
CVE-2020-0860 | Windows ActiveX Installer Service Elevation of Privilege Vulnerability
CVE-2020-0861 | Windows Network Driver Interface Specification (NDIS) Information Disclosure Vulnerability
CVE-2020-0864 | Windows Work Folder Service Elevation of Privilege Vulnerability
CVE-2020-0865 | Windows Work Folder Service Elevation of Privilege Vulnerability
CVE-2020-0866 | Windows Work Folder Service Elevation of Privilege Vulnerability
CVE-2020-0867 | Windows Update Orchestrator Service Elevation of Privilege Vulnerability
CVE-2020-0868 | Windows Update Orchestrator Service Elevation of Privilege Vulnerability
CVE-2020-0869 | Media Foundation Memory Corruption Vulnerability
CVE-2020-0871 | Windows Network Connections Service Information Disclosure Vulnerability
CVE-2020-0874 | Windows GDI Information Disclosure Vulnerability
CVE-2020-0877 | Win32k Elevation of Privilege Vulnerability
CVE-2020-0879 | Windows GDI Information Disclosure Vulnerability
CVE-2020-0880 | Windows GDI Information Disclosure Vulnerability
CVE-2020-0881 | GDI+ Remote Code Execution Vulnerability
CVE-2020-0882 | Windows GDI Information Disclosure Vulnerability
CVE-2020-0883 | GDI+ Remote Code Execution Vulnerability
CVE-2020-0885 | Windows Graphics Component Information Disclosure Vulnerability
CVE-2020-0887 | Win32k Elevation of Privilege Vulnerability
CVE-2020-0896 | Windows Hard Link Elevation of Privilege Vulnerability
CVE-2020-0897 | Windows Work Folder Service Elevation of Privilege Vulnerability
The following table shows the affected products.
Product Name |
Hitachi Unified Storage VM (HUS VM) |
---|---|
Vulnerability ID |
CVE-2020-0645, CVE-2020-0684, CVE-2020-0690, CVE-2020-0768, CVE-2020-0769, CVE-2020-0770, CVE-2020-0771, CVE-2020-0772, CVE-2020-0773, CVE-2020-0774, CVE-2020-0775, CVE-2020-0777, CVE-2020-0778, CVE-2020-0779, CVE-2020-0780, CVE-2020-0781, CVE-2020-0783, CVE-2020-0785, CVE-2020-0786, CVE-2020-0787, CVE-2020-0788, CVE-2020-0791, CVE-2020-0793, CVE-2020-0797, CVE-2020-0799, CVE-2020-0800, CVE-2020-0801, CVE-2020-0802, CVE-2020-0803, CVE-2020-0804, CVE-2020-0806, CVE-2020-0809, CVE-2020-0810, CVE-2020-0814, CVE-2020-0819, CVE-2020-0820, CVE-2020-0822, CVE-2020-0823, CVE-2020-0824, CVE-2020-0826, CVE-2020-0827, CVE-2020-0828, CVE-2020-0829, CVE-2020-0830, CVE-2020-0831, CVE-2020-0832, CVE-2020-0833, CVE-2020-0834, CVE-2020-0840, CVE-2020-0841, CVE-2020-0842, CVE-2020-0843, CVE-2020-0844, CVE-2020-0845, CVE-2020-0847, CVE-2020-0849, CVE-2020-0853, CVE-2020-0857, CVE-2020-0858, CVE-2020-0859, CVE-2020-0860, CVE-2020-0861, CVE-2020-0864, CVE-2020-0865, CVE-2020-0866, CVE-2020-0867, CVE-2020-0868, CVE-2020-0869, CVE-2020-0871, CVE-2020-0874, CVE-2020-0877, CVE-2020-0879, CVE-2020-0880, CVE-2020-0881, CVE-2020-0882, CVE-2020-0883, CVE-2020-0885, CVE-2020-0887, CVE-2020-0896, CVE-2020-0897 |
Product Name |
Hitachi Virtual Storage Platform 5100, 5500 Hitachi Virtual Storage Platform 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2020-0645, CVE-2020-0684, CVE-2020-0690, CVE-2020-0762, CVE-2020-0763, CVE-2020-0768, CVE-2020-0769, CVE-2020-0770, CVE-2020-0771, CVE-2020-0772, CVE-2020-0773, CVE-2020-0774, CVE-2020-0775, CVE-2020-0776, CVE-2020-0777, CVE-2020-0778, CVE-2020-0779, CVE-2020-0780, CVE-2020-0781, CVE-2020-0783, CVE-2020-0785, CVE-2020-0787, CVE-2020-0788, CVE-2020-0791, CVE-2020-0793, CVE-2020-0797, CVE-2020-0798, CVE-2020-0799, CVE-2020-0800, CVE-2020-0801, CVE-2020-0802, CVE-2020-0803, CVE-2020-0804, CVE-2020-0806, CVE-2020-0807, CVE-2020-0808, CVE-2020-0809, CVE-2020-0810, CVE-2020-0811, CVE-2020-0812, CVE-2020-0813, CVE-2020-0814, CVE-2020-0816, CVE-2020-0819, CVE-2020-0820, CVE-2020-0822, CVE-2020-0823, CVE-2020-0824, CVE-2020-0825, CVE-2020-0826, CVE-2020-0827, CVE-2020-0828, CVE-2020-0829, CVE-2020-0830, CVE-2020-0831, CVE-2020-0832, CVE-2020-0833, CVE-2020-0834, CVE-2020-0840, CVE-2020-0841, CVE-2020-0842, CVE-2020-0843, CVE-2020-0844, CVE-2020-0845, CVE-2020-0847, CVE-2020-0848, CVE-2020-0849, CVE-2020-0853, CVE-2020-0854, CVE-2020-0857, CVE-2020-0858, CVE-2020-0859, CVE-2020-0860, CVE-2020-0861, CVE-2020-0864, CVE-2020-0865, CVE-2020-0866, CVE-2020-0867, CVE-2020-0868, CVE-2020-0869, CVE-2020-0871, CVE-2020-0877, CVE-2020-0879, CVE-2020-0880, CVE-2020-0881, CVE-2020-0882, CVE-2020-0883, CVE-2020-0885, CVE-2020-0887, CVE-2020-0896, CVE-2020-0897 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2020-0645, CVE-2020-0684, CVE-2020-0690, CVE-2020-0768, CVE-2020-0769, CVE-2020-0770, CVE-2020-0771, CVE-2020-0772, CVE-2020-0773, CVE-2020-0774, CVE-2020-0775, CVE-2020-0777, CVE-2020-0778, CVE-2020-0779, CVE-2020-0780, CVE-2020-0781, CVE-2020-0783, CVE-2020-0785, CVE-2020-0786, CVE-2020-0787, CVE-2020-0788, CVE-2020-0791, CVE-2020-0793, CVE-2020-0797, CVE-2020-0799, CVE-2020-0800, CVE-2020-0801, CVE-2020-0802, CVE-2020-0803, CVE-2020-0804, CVE-2020-0806, CVE-2020-0809, CVE-2020-0810, CVE-2020-0814, CVE-2020-0819, CVE-2020-0820, CVE-2020-0822, CVE-2020-0823, CVE-2020-0824, CVE-2020-0826, CVE-2020-0827, CVE-2020-0828, CVE-2020-0829, CVE-2020-0830, CVE-2020-0831, CVE-2020-0832, CVE-2020-0833, CVE-2020-0834, CVE-2020-0840, CVE-2020-0841, CVE-2020-0842, CVE-2020-0843, CVE-2020-0844, CVE-2020-0845, CVE-2020-0847, CVE-2020-0849, CVE-2020-0853, CVE-2020-0857, CVE-2020-0858, CVE-2020-0859, CVE-2020-0860, CVE-2020-0861, CVE-2020-0864, CVE-2020-0865, CVE-2020-0866, CVE-2020-0867, CVE-2020-0868, CVE-2020-0869, CVE-2020-0871, CVE-2020-0874, CVE-2020-0877, CVE-2020-0879, CVE-2020-0880, CVE-2020-0881, CVE-2020-0882, CVE-2020-0883, CVE-2020-0885, CVE-2020-0887, CVE-2020-0896, CVE-2020-0897 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.