February 5, 2021
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2021-301
CVE-2021-1637 | Windows DNS Query Information Disclosure Vulnerability
CVE-2021-1638 | Windows Bluetooth Security Feature Bypass Vulnerability
CVE-2021-1642 | Windows App X Deployment Extensions Elevation of Privilege Vulnerability
CVE-2021-1645 | Windows Docker Information Disclosure Vulnerability
CVE-2021-1646 | Windows WLAN Service Elevation of Privilege Vulnerability
CVE-2021-1647 | Microsoft Defender Remote Code Execution Vulnerability
CVE-2021-1648 | Microsoft splwow64 Elevation of Privilege Vulnerability
CVE-2021-1649 | Active Template Library Elevation of Privilege Vulnerability
CVE-2021-1650 | Windows Runtime C++ Template Library Elevation of Privilege Vulnerability
CVE-2021-1651 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
CVE-2021-1652 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2021-1653 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2021-1654 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2021-1655 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2021-1656 | TPM Device Driver Information Disclosure Vulnerability
CVE-2021-1657 | Windows Fax Compose Form Remote Code Execution Vulnerability
CVE-2021-1658 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-1659 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2021-1660 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-1661 | Windows Installer Elevation of Privilege Vulnerability
CVE-2021-1662 | Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-1664 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-1665 | GDI+ Remote Code Execution Vulnerability
CVE-2021-1666 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-1667 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-1668 | Microsoft DTV-DVD Video Decoder Remote Code Execution Vulnerability
CVE-2021-1669 | Windows Remote Desktop Security Feature Bypass Vulnerability
CVE-2021-1671 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-1672 | Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
CVE-2021-1673 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-1674 | Windows Remote Desktop Protocol Core Security Feature Bypass Vulnerability
CVE-2021-1676 | Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability
CVE-2021-1678 | NTLM Security Feature Bypass Vulnerability
CVE-2021-1679 | Windows CryptoAPI  Denial of Service Vulnerability
CVE-2021-1680 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
CVE-2021-1681 | Windows Wallet Service Elevation of Privilege Vulnerability
CVE-2021-1682 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-1683 | Windows Bluetooth Security Feature Bypass Vulnerability
CVE-2021-1684 | Windows Bluetooth Security Feature Bypass Vulnerability
CVE-2021-1685 | Windows App X Deployment Extensions Elevation of Privilege Vulnerability
CVE-2021-1686 | Windows Wallet Service Elevation of Privilege Vulnerability
CVE-2021-1687 | Windows Wallet Service Elevation of Privilege Vulnerability
CVE-2021-1688 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2021-1689 | Windows Multipoint Management Elevation of Privilege Vulnerability
CVE-2021-1690 | Windows Wallet Service Elevation of Privilege Vulnerability
CVE-2021-1692 | Hyper-V Denial of Service Vulnerability
CVE-2021-1693 | Windows CSC Service Elevation of Privilege Vulnerability
CVE-2021-1694 | Windows Update Stack Elevation of Privilege Vulnerability
CVE-2021-1695 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2021-1696 | Windows Graphics Component Information Disclosure Vulnerability
CVE-2021-1697 | Windows Install Service Elevation of Privilege Vulnerability
CVE-2021-1699 | Windows (modem.sys) Information Disclosure Vulnerability
CVE-2021-1700 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-1701 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-1702 | Windows Remote Procedure Call Runtime Elevation of Privilege Vulnerability
CVE-2021-1704 | Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2021-1705 | Microsoft Edge (HTML-based) Memory Corruption Vulnerability
CVE-2021-1706 | Windows LUAFV Elevation of Privilege Vulnerability
CVE-2021-1708 | Windows GDI+ Information Disclosure Vulnerability
CVE-2021-1709 | Windows Win32k Elevation of Privilege Vulnerability
CVE-2021-1710 | Microsoft Windows Media Foundation Remote Code Execution Vulnerability
The following table shows the affected products.
Product Name |
Hitachi Unified Storage VM (HUS VM) |
---|---|
Vulnerability ID |
CVE-2021-1637, CVE-2021-1647, CVE-2021-1648, CVE-2021-1649, CVE-2021-1650, CVE-2021-1652, CVE-2021-1653, CVE-2021-1654, CVE-2021-1655, CVE-2021-1656, CVE-2021-1657, CVE-2021-1658, CVE-2021-1659, CVE-2021-1660, CVE-2021-1661, CVE-2021-1664, CVE-2021-1665, CVE-2021-1666, CVE-2021-1667, CVE-2021-1668, CVE-2021-1669, CVE-2021-1671, CVE-2021-1673, CVE-2021-1674, CVE-2021-1676, CVE-2021-1678, CVE-2021-1679, CVE-2021-1680, CVE-2021-1681, CVE-2021-1683, CVE-2021-1684, CVE-2021-1685, CVE-2021-1686, CVE-2021-1687, CVE-2021-1688, CVE-2021-1689, CVE-2021-1690, CVE-2021-1692, CVE-2021-1693, CVE-2021-1694, CVE-2021-1695, CVE-2021-1696, CVE-2021-1697, CVE-2021-1699, CVE-2021-1700, CVE-2021-1701, CVE-2021-1702, CVE-2021-1704, CVE-2021-1705, CVE-2021-1706, CVE-2021-1708, CVE-2021-1709, CVE-2021-1710 |
Product Name |
Hitachi Virtual Storage Platform 5100, 5500 Hitachi Virtual Storage Platform 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2021-1637, CVE-2021-1638, CVE-2021-1642, CVE-2021-1645, CVE-2021-1646, CVE-2021-1647, CVE-2021-1648, CVE-2021-1649, CVE-2021-1650, CVE-2021-1651, CVE-2021-1652, CVE-2021-1653, CVE-2021-1654, CVE-2021-1655, CVE-2021-1656, CVE-2021-1657, CVE-2021-1658, CVE-2021-1659, CVE-2021-1660, CVE-2021-1661, CVE-2021-1662, CVE-2021-1664, CVE-2021-1665, CVE-2021-1666, CVE-2021-1667, CVE-2021-1668, CVE-2021-1669, CVE-2021-1671, CVE-2021-1672, CVE-2021-1673, CVE-2021-1674, CVE-2021-1676, CVE-2021-1678, CVE-2021-1679, CVE-2021-1680, CVE-2021-1681, CVE-2021-1682, CVE-2021-1683, CVE-2021-1684, CVE-2021-1685, CVE-2021-1686, CVE-2021-1687, CVE-2021-1688, CVE-2021-1689, CVE-2021-1690, CVE-2021-1692, CVE-2021-1693, CVE-2021-1694, CVE-2021-1695, CVE-2021-1696, CVE-2021-1697, CVE-2021-1699, CVE-2021-1700, CVE-2021-1701, CVE-2021-1702, CVE-2021-1704, CVE-2021-1705, CVE-2021-1706, CVE-2021-1708, CVE-2021-1709, CVE-2021-1710 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2021-1637, CVE-2021-1647, CVE-2021-1648, CVE-2021-1649, CVE-2021-1650, CVE-2021-1652, CVE-2021-1653, CVE-2021-1654, CVE-2021-1655, CVE-2021-1656, CVE-2021-1657, CVE-2021-1658, CVE-2021-1659, CVE-2021-1660, CVE-2021-1661, CVE-2021-1664, CVE-2021-1665, CVE-2021-1666, CVE-2021-1667, CVE-2021-1668, CVE-2021-1669, CVE-2021-1671, CVE-2021-1673, CVE-2021-1674, CVE-2021-1676, CVE-2021-1678, CVE-2021-1679, CVE-2021-1680, CVE-2021-1681, CVE-2021-1683, CVE-2021-1684, CVE-2021-1685, CVE-2021-1686, CVE-2021-1687, CVE-2021-1688, CVE-2021-1689, CVE-2021-1690, CVE-2021-1692, CVE-2021-1693, CVE-2021-1694, CVE-2021-1695, CVE-2021-1696, CVE-2021-1697, CVE-2021-1699, CVE-2021-1700, CVE-2021-1701, CVE-2021-1702, CVE-2021-1704, CVE-2021-1705, CVE-2021-1706, CVE-2021-1708, CVE-2021-1709, CVE-2021-1710 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.