October 7, 20200
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2020-314
CVE-2020-0648 | Windows RSoP Service Application Elevation of Privilege Vulnerability
CVE-2020-0766 | Microsoft Store Runtime Elevation of Privilege Vulnerability
CVE-2020-0782 | Windows Cryptographic Catalog Services Elevation of Privilege Vulnerability
CVE-2020-0790 | Microsoft splwow64 Elevation of Privilege Vulnerability
CVE-2020-0837 | ADFS Spoofing Vulnerability
CVE-2020-0838 | NTFS Elevation of Privilege Vulnerability
CVE-2020-0839 | Windows dnsrslvr.dll Elevation of Privilege Vulnerability
CVE-2020-0870 | Shell infrastructure component Elevation of Privilege Vulnerability
CVE-2020-0875 | Microsoft splwow64 Information Disclosure Vulnerability
CVE-2020-0878 | Microsoft Browser Memory Corruption Vulnerability
CVE-2020-0886 | Windows Storage Services Elevation of Privilege Vulnerability
CVE-2020-0911 | Windows Modules Installer Elevation of Privilege Vulnerability
CVE-2020-0912 | Windows Function Discovery SSDP Provider Elevation of Privilege Vulnerability
CVE-2020-0914 | Windows State Repository Service Information Disclosure Vulnerability
CVE-2020-0921 | Microsoft Graphics Component Information Disclosure Vulnerability
CVE-2020-0922 | Microsoft COM for Windows Remote Code Execution Vulnerability
CVE-2020-0928 | Windows Kernel Information Disclosure Vulnerability
CVE-2020-0941 | Win32k Information Disclosure Vulnerability
CVE-2020-0951 | Windows Defender Application Control Security Feature Bypass Vulnerability
CVE-2020-0989 | Windows Mobile Device Management Diagnostics Information Disclosure Vulnerability
CVE-2020-0997 | Windows Camera Codec Pack Remote Code Execution Vulnerability
CVE-2020-0998 | Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2020-1012 | Win I Net API Elevation of Privilege Vulnerability
CVE-2020-1013 | Group Policy Elevation of Privilege Vulnerability
CVE-2020-1030 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2020-1031 | Windows DHCP Server Information Disclosure Vulnerability
CVE-2020-1033 | Windows Kernel Information Disclosure Vulnerability
CVE-2020-1034 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2020-1038 | Windows Routing Utilities Denial of Service
CVE-2020-1039 | Jet Database Engine Remote Code Execution Vulnerability
CVE-2020-1052 | Windows Elevation of Privilege Vulnerability
CVE-2020-1053 | DirectX Elevation of Privilege Vulnerability
CVE-2020-1074 | Jet Database Engine Remote Code Execution Vulnerability
CVE-2020-1083 | Microsoft Graphics Component Information Disclosure Vulnerability
CVE-2020-1091 | Windows Graphics Component Information Disclosure Vulnerability
CVE-2020-1097 | Windows Graphics Component Information Disclosure Vulnerability
CVE-2020-1115 | Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2020-1122 | Windows Language Pack Installer Elevation of Privilege Vulnerability
CVE-2020-1129 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability
CVE-2020-1130 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
CVE-2020-1133 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
CVE-2020-1146 | Microsoft Store Runtime Elevation of Privilege Vulnerability
CVE-2020-1152 | Windows Win32k Elevation of Privilege Vulnerability
CVE-2020-1169 | Windows Runtime Elevation of Privilege Vulnerability
CVE-2020-1245 | Win32k Elevation of Privilege Vulnerability
CVE-2020-1250 | Win32k Information Disclosure Vulnerability
CVE-2020-1252 | Windows Remote Code Execution Vulnerability
CVE-2020-1256 | Windows GDI Information Disclosure Vulnerability
CVE-2020-1285 | GDI+ Remote Code Execution Vulnerability
CVE-2020-1303 | Windows Runtime Elevation of Privilege Vulnerability
CVE-2020-1308 | DirectX Elevation of Privilege Vulnerability
CVE-2020-1319 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability
CVE-2020-1376 | Windows Elevation of Privilege Vulnerability
CVE-2020-1471 | Windows Cloud Experience Host Elevation of Privilege Vulnerability
CVE-2020-1491 | Windows Function Discovery Service Elevation of Privilege Vulnerability
CVE-2020-1506 | Windows Start-Up Application Elevation of Privilege Vulnerability
CVE-2020-1507 | Microsoft COM for Windows Elevation of Privilege Vulnerability
CVE-2020-1508 | Windows Media Audio Decoder Remote Code Execution Vulnerability
CVE-2020-1559 | Windows Storage Services Elevation of Privilege Vulnerability
CVE-2020-1589 | Windows Kernel Information Disclosure Vulnerability
CVE-2020-1590 | Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability
CVE-2020-1592 | Windows Kernel Information Disclosure Vulnerability
CVE-2020-1593 | Windows Media Audio Decoder Remote Code Execution Vulnerability
CVE-2020-1596 | TLS Information Disclosure Vulnerability
CVE-2020-1598 | Windows UPnP Service Elevation of Privilege Vulnerability
CVE-2020-16854 | Windows Kernel Information Disclosure Vulnerability
CVE-2020-16879 | Projected Filesystem Information Disclosure Vulnerability
The following table shows the affected products.
Product Name |
Hitachi Unified Storage VM (HUS VM) |
---|---|
Vulnerability ID |
CVE-2020-0782, CVE-2020-0790, CVE-2020-0838, CVE-2020-0839, CVE-2020-0875, CVE-2020-0878, CVE-2020-0886, CVE-2020-0911, CVE-2020-0912, CVE-2020-0914, CVE-2020-0921, CVE-2020-0922, CVE-2020-0941, CVE-2020-0997, CVE-2020-1012, CVE-2020-1013, CVE-2020-1030, CVE-2020-1031, CVE-2020-1034, CVE-2020-1038, CVE-2020-1039, CVE-2020-1052, CVE-2020-1053, CVE-2020-1074, CVE-2020-1083, CVE-2020-1091, CVE-2020-1097, CVE-2020-1115, CVE-2020-1130, CVE-2020-1133, CVE-2020-1152, CVE-2020-1245, CVE-2020-1250, CVE-2020-1252, CVE-2020-1256, CVE-2020-1285, CVE-2020-1308, CVE-2020-1319, CVE-2020-1376, CVE-2020-1471, CVE-2020-1491, CVE-2020-1508, CVE-2020-1559, CVE-2020-1589, CVE-2020-1593, CVE-2020-1596, CVE-2020-1598, CVE-2020-16854 |
Product Name |
Hitachi Virtual Storage Platform 5100, 5500 Hitachi Virtual Storage Platform 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2020-0648, CVE-2020-0766, CVE-2020-0782, CVE-2020-0790, CVE-2020-0837, CVE-2020-0838, CVE-2020-0839, CVE-2020-0870, CVE-2020-0875, CVE-2020-0878, CVE-2020-0886, CVE-2020-0911, CVE-2020-0912, CVE-2020-0914, CVE-2020-0921, CVE-2020-0922, CVE-2020-0928, CVE-2020-0941, CVE-2020-0951, CVE-2020-0989, CVE-2020-0997, CVE-2020-0998, CVE-2020-1012, CVE-2020-1013, CVE-2020-1030, CVE-2020-1031, CVE-2020-1033, CVE-2020-1034, CVE-2020-1038, CVE-2020-1039, CVE-2020-1052, CVE-2020-1053, CVE-2020-1074, CVE-2020-1083, CVE-2020-1091, CVE-2020-1097, CVE-2020-1115, CVE-2020-1122, CVE-2020-1129, CVE-2020-1130, CVE-2020-1133, CVE-2020-1146, CVE-2020-1152, CVE-2020-1169, CVE-2020-1245, CVE-2020-1250, CVE-2020-1252, CVE-2020-1256, CVE-2020-1285, CVE-2020-1303, CVE-2020-1308, CVE-2020-1319, CVE-2020-1376, CVE-2020-1471, CVE-2020-1491, CVE-2020-1506, CVE-2020-1507, CVE-2020-1508, CVE-2020-1559, CVE-2020-1589, CVE-2020-1590, CVE-2020-1592, CVE-2020-1593, CVE-2020-1596, CVE-2020-1598, CVE-2020-16854, CVE-2020-16879 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2020-0782, CVE-2020-0790, CVE-2020-0838, CVE-2020-0839, CVE-2020-0875, CVE-2020-0878, CVE-2020-0886, CVE-2020-0911, CVE-2020-0912, CVE-2020-0914, CVE-2020-0921, CVE-2020-0922, CVE-2020-0941, CVE-2020-0997, CVE-2020-1012, CVE-2020-1013, CVE-2020-1030, CVE-2020-1031, CVE-2020-1034, CVE-2020-1038, CVE-2020-1039, CVE-2020-1052, CVE-2020-1053, CVE-2020-1074, CVE-2020-1083, CVE-2020-1091, CVE-2020-1097, CVE-2020-1115, CVE-2020-1130, CVE-2020-1133, CVE-2020-1152, CVE-2020-1245, CVE-2020-1250, CVE-2020-1252, CVE-2020-1256, CVE-2020-1285, CVE-2020-1308, CVE-2020-1319, CVE-2020-1376, CVE-2020-1471, CVE-2020-1491, CVE-2020-1508, CVE-2020-1559, CVE-2020-1589, CVE-2020-1593, CVE-2020-1596, CVE-2020-1598, CVE-2020-16854 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.