August 31, 2020
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2020-313
CVE-2020-1046 | .NET Framework Remote Code Execution Vulnerability
CVE-2020-1337 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2020-1339 | Windows Media Remote Code Execution Vulnerability
CVE-2020-1377 | Windows Registry Elevation of Privilege Vulnerability
CVE-2020-1379 | Media Foundation Memory Corruption Vulnerability
CVE-2020-1380 | Scripting Engine Memory Corruption Vulnerability
CVE-2020-1383 | Windows RRAS Service Information Disclosure Vulnerability
CVE-2020-1417 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2020-1464 | Windows Spoofing Vulnerability
CVE-2020-1467 | Windows Hard Link Elevation of Privilege Vulnerability
CVE-2020-1470 | Windows Work Folders Service Elevation of Privilege Vulnerability
CVE-2020-1473 | Jet Database Engine Remote Code Execution Vulnerability
CVE-2020-1474 | Windows Image Acquisition Service Information Disclosure Vulnerability
CVE-2020-1475 | Windows Server Resource Management Service Elevation of Privilege Vulnerability
CVE-2020-1476 | ASP.NET and .NET Elevation of Privilege Vulnerability
CVE-2020-1479 | DirectX Elevation of Privilege Vulnerability
CVE-2020-1480 | Windows GDI Elevation of Privilege Vulnerability
CVE-2020-1487 | Media Foundation Information Disclosure Vulnerability
CVE-2020-1488 | Windows AppX Deployment Extensions Elevation of Privilege Vulnerability
CVE-2020-1489 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2020-1490 | Windows Storage Service Elevation of Privilege Vulnerability
CVE-2020-1509 | Local Security Authority Subsystem Service Elevation of Privilege Vulnerability
CVE-2020-1510 | Win32k Information Disclosure Vulnerability
CVE-2020-1511 | Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability
CVE-2020-1512 | Windows State Repository Service Information Disclosure Vulnerability
CVE-2020-1515 | Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2020-1517 | Windows File Server Resource Management Service Elevation of Privilege Vulnerability
CVE-2020-1519 | Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2020-1520 | Windows Font Driver Host Remote Code Execution Vulnerability
CVE-2020-1521 | Windows Speech Runtime Elevation of Privilege Vulnerability
CVE-2020-1524 | Windows Speech Shell Components Elevation of Privilege Vulnerability
CVE-2020-1526 | Windows Network Connection Broker Elevation of Privilege Vulnerability
CVE-2020-1527 | Windows Custom Protocol Engine Elevation of Privilege Vulnerability
CVE-2020-1528 | Windows Radio Manager API Elevation of Privilege Vulnerability
CVE-2020-1530 | Windows Remote Access Elevation of Privilege Vulnerability
CVE-2020-1531 | Windows Accounts Control Elevation of Privilege Vulnerability
CVE-2020-1533 | Windows Wallet Service Elevation of Privilege Vulnerability
CVE-2020-1534 | Windows Backup Service Elevation of Privilege Vulnerability
CVE-2020-1535 | Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1537 | Windows Remote Access Elevation of Privilege Vulnerability
CVE-2020-1548 | Windows Waas Medic Service Information Disclosure Vulnerability
CVE-2020-1549 | Windows CDP User Components Elevation of Privilege Vulnerability
CVE-2020-1552 | Windows Work Folder Service Elevation of Privilege Vulnerability
CVE-2020-1553 | Windows Runtime Elevation of Privilege Vulnerability
CVE-2020-1561 | Microsoft Graphics Components Remote Code Execution Vulnerability
CVE-2020-1565 | Windows Elevation of Privilege Vulnerability
CVE-2020-1567 | MSHTML Engine Remote Code Execution Vulnerability
CVE-2020-1577 | Direct Write Information Disclosure Vulnerability
CVE-2020-1578 | Windows Kernel Information Disclosure Vulnerability
CVE-2020-1579 | Windows Function Discovery SSDP Provider Elevation of Privilege Vulnerability
CVE-2020-1584 | Windows dnsrslvr.dll Elevation of Privilege Vulnerability
CVE-2020-1587 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
The following table shows the affected products.
Product Name |
Hitachi Unified Storage VM (HUS VM) |
---|---|
Vulnerability ID |
CVE-2020-1337, CVE-2020-1339, CVE-2020-1377, CVE-2020-1378, CVE-2020-1379, CVE-2020-1380, CVE-2020-1383, CVE-2020-1464, CVE-2020-1470, CVE-2020-1473, CVE-2020-1474, CVE-2020-1477, CVE-2020-1478, CVE-2020-1484, CVE-2020-1485, CVE-2020-1486, CVE-2020-1487, CVE-2020-1488, CVE-2020-1489, CVE-2020-1490, CVE-2020-1492, CVE-2020-1509, CVE-2020-1510, CVE-2020-1511, CVE-2020-1512, CVE-2020-1513, CVE-2020-1515, CVE-2020-1516, CVE-2020-1519, CVE-2020-1520, CVE-2020-1529, CVE-2020-1530, CVE-2020-1531, CVE-2020-1533, CVE-2020-1534, CVE-2020-1535, CVE-2020-1536, CVE-2020-1537, CVE-2020-1538, CVE-2020-1539, CVE-2020-1540, CVE-2020-1541, CVE-2020-1542, CVE-2020-1543, CVE-2020-1544, CVE-2020-1545, CVE-2020-1546, CVE-2020-1547, CVE-2020-1551, CVE-2020-1552, CVE-2020-1553, CVE-2020-1554, CVE-2020-1556, CVE-2020-1557, CVE-2020-1558, CVE-2020-1561, CVE-2020-1562, CVE-2020-1564, CVE-2020-1565, CVE-2020-1566, CVE-2020-1567, CVE-2020-1570, CVE-2020-1577, CVE-2020-1579, CVE-2020-1584, CVE-2020-1587 |
Product Name |
Hitachi Virtual Storage Platform 5100, 5500 Hitachi Virtual Storage Platform 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2020-1046, CVE-2020-1337, CVE-2020-1339, CVE-2020-1377, CVE-2020-1378, CVE-2020-1379, CVE-2020-1380, CVE-2020-1383, CVE-2020-1417, CVE-2020-1464, CVE-2020-1467, CVE-2020-1470, CVE-2020-1473, CVE-2020-1474, CVE-2020-1475, CVE-2020-1476, CVE-2020-1477, CVE-2020-1478, CVE-2020-1479, CVE-2020-1480, CVE-2020-1484, CVE-2020-1485, CVE-2020-1486, CVE-2020-1487, CVE-2020-1488, CVE-2020-1489, CVE-2020-1490, CVE-2020-1492, CVE-2020-1509, CVE-2020-1510, CVE-2020-1511, CVE-2020-1512, CVE-2020-1513, CVE-2020-1515, CVE-2020-1516, CVE-2020-1517, CVE-2020-1518, CVE-2020-1519, CVE-2020-1520, CVE-2020-1521, CVE-2020-1522, CVE-2020-1524, CVE-2020-1525, CVE-2020-1526, CVE-2020-1527, CVE-2020-1528, CVE-2020-1529, CVE-2020-1530, CVE-2020-1531, CVE-2020-1533, CVE-2020-1534, CVE-2020-1535, CVE-2020-1536, CVE-2020-1537, CVE-2020-1538, CVE-2020-1539, CVE-2020-1540, CVE-2020-1541, CVE-2020-1542, CVE-2020-1543, CVE-2020-1544, CVE-2020-1545, CVE-2020-1546, CVE-2020-1547, CVE-2020-1548, CVE-2020-1549, CVE-2020-1550, CVE-2020-1551, CVE-2020-1552, CVE-2020-1553, CVE-2020-1554, CVE-2020-1555, CVE-2020-1556, CVE-2020-1557, CVE-2020-1558, CVE-2020-1561, CVE-2020-1562, CVE-2020-1564, CVE-2020-1565, CVE-2020-1566, CVE-2020-1567, CVE-2020-1570, CVE-2020-1577, CVE-2020-1578, CVE-2020-1579, CVE-2020-1584, CVE-2020-1587 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2020-1337, CVE-2020-1339, CVE-2020-1377, CVE-2020-1378, CVE-2020-1379, CVE-2020-1380, CVE-2020-1383, CVE-2020-1464, CVE-2020-1470, CVE-2020-1473, CVE-2020-1474, CVE-2020-1477, CVE-2020-1478, CVE-2020-1484, CVE-2020-1485, CVE-2020-1486, CVE-2020-1487, CVE-2020-1488, CVE-2020-1489, CVE-2020-1490, CVE-2020-1492, CVE-2020-1509, CVE-2020-1510, CVE-2020-1511, CVE-2020-1512, CVE-2020-1513, CVE-2020-1515, CVE-2020-1516, CVE-2020-1519, CVE-2020-1520, CVE-2020-1529, CVE-2020-1530, CVE-2020-1531, CVE-2020-1533, CVE-2020-1534, CVE-2020-1535, CVE-2020-1536, CVE-2020-1537, CVE-2020-1538, CVE-2020-1539, CVE-2020-1540, CVE-2020-1541, CVE-2020-1542, CVE-2020-1543, CVE-2020-1544, CVE-2020-1545, CVE-2020-1546, CVE-2020-1547, CVE-2020-1551, CVE-2020-1552, CVE-2020-1553, CVE-2020-1554, CVE-2020-1556, CVE-2020-1557, CVE-2020-1558, CVE-2020-1561, CVE-2020-1562, CVE-2020-1564, CVE-2020-1565, CVE-2020-1566, CVE-2020-1567, CVE-2020-1570, CVE-2020-1577, CVE-2020-1579, CVE-2020-1584, CVE-2020-1587 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.