April 28, 2021
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2021-302
CVE-2021-1637 | Windows DNS Query Information Disclosure Vulnerability
CVE-2021-1698 | Windows Win32k Elevation of Privilege Vulnerability
CVE-2021-1722 | Windows Fax Service Remote Code Execution Vulnerability
CVE-2021-1727 | Windows Installer Elevation of Privilege Vulnerability
CVE-2021-1731 | PFX Encryption Security Feature Bypass Vulnerability
CVE-2021-1732 | Windows Win32k Elevation of Privilege Vulnerability
CVE-2021-1734 | Windows Remote Procedure Call Information Disclosure Vulnerability
CVE-2021-24074 | Windows TCP/IP Remote Code Execution Vulnerability
CVE-2021-24076 | Microsoft Windows VM Switch Information Disclosure Vulnerability
CVE-2021-24077 | Windows Fax Service Remote Code Execution Vulnerability
CVE-2021-24079 | Windows Backup Engine Information Disclosure Vulnerability
CVE-2021-24080 | Windows Trust Verification API Denial of Service Vulnerability
CVE-2021-24081 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability
CVE-2021-24082 | Microsoft. Power Shell. Utility Module WDAC Security Feature Bypass Vulnerability
CVE-2021-24083 | Windows Address Book Remote Code Execution Vulnerability
CVE-2021-24084 | Windows Mobile Device Management Information Disclosure Vulnerability
CVE-2021-24086 | Windows TCP/IP Denial of Service Vulnerability
CVE-2021-24088 | Windows Local Spooler Remote Code Execution Vulnerability
CVE-2021-24091 | Windows Camera Codec Pack Remote Code Execution Vulnerability
CVE-2021-24092 | Microsoft Defender Elevation of Privilege Vulnerability
CVE-2021-24093 | Windows Graphics Component Remote Code Execution Vulnerability
CVE-2021-24094 | Windows TCP/IP Remote Code Execution Vulnerability
CVE-2021-24096 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-24098 | Windows Console Driver Denial of Service Vulnerability
CVE-2021-24102 | Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-24103 | Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-24106 | Windows DirectX Information Disclosure Vulnerability
CVE-2021-25195 | Windows PKU2U Elevation of Privilege Vulnerability
CVE-2020-0689 | Microsoft Secure Boot Security Feature Bypass Vulnerability
CVE-2020-8698 | Intel microcode updates for Windows 10, version 1507
CVE-2020-8696 | Intel microcode updates for Windows 10, version 1507
CVE-2020-8695 | Intel microcode updates for Windows 10, version 1507
CVE-2019-11091 | Intel microcode updates for Windows 10, version 1507
CVE-2018-12130 | Intel microcode updates for Windows 10, version 1507
CVE-2018-12127 | Intel microcode updates for Windows 10, version 1507
CVE-2018-12126 | Intel microcode updates for Windows 10, version 1507
CVE-2020-8698 | Intel microcode updates for Windows 10, version 1809 and Windows Server 2019
CVE-2020-8696 | Intel microcode updates for Windows 10, version 1809 and Windows Server 2019
CVE-2020-8695 | Intel microcode updates for Windows 10, version 1809 and Windows Server 2019
CVE-2019-11091 | Intel microcode updates for Windows 10, version 1809 and Windows Server 2019
CVE-2018-12130 | Intel microcode updates for Windows 10, version 1809 and Windows Server 2019
CVE-2018-12127 | Intel microcode updates for Windows 10, version 1809 and Windows Server 2019
CVE-2018-12126 | Intel microcode updates for Windows 10, version 1809 and Windows Server 2019
The following table shows the affected products.
Product Name |
Hitachi Unified Storage VM (HUS VM) |
---|---|
Vulnerability ID |
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091, CVE-2020-0689, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698, CVE-2021-1722, CVE-2021-1727, CVE-2021-1734, CVE-2021-24074, CVE-2021-24076, CVE-2021-24077, CVE-2021-24079, CVE-2021-24080, CVE-2021-24081, CVE-2021-24083, CVE-2021-24086, CVE-2021-24088, CVE-2021-24091, CVE-2021-24094, CVE-2021-24102, CVE-2021-24103, CVE-2021-25195 |
Product Name |
Hitachi Virtual Storage Platform 5100, 5500 Hitachi Virtual Storage Platform 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091, CVE-2020-0689, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698, CVE-2021-1722, CVE-2021-1727, CVE-2021-1734, CVE-2021-24074, CVE-2021-24076, CVE-2021-24077, CVE-2021-24079, CVE-2021-24080, CVE-2021-24081, CVE-2021-24083, CVE-2021-24086, CVE-2021-24088, CVE-2021-24091, CVE-2021-24094, CVE-2021-24102, CVE-2021-24103, CVE-2021-25195 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091, CVE-2020-0689, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698, CVE-2021-1698, CVE-2021-1722, CVE-2021-1727, CVE-2021-1731, CVE-2021-1732, CVE-2021-1734, CVE-2021-24074, CVE-2021-24076, CVE-2021-24077, CVE-2021-24079, CVE-2021-24080, CVE-2021-24081, CVE-2021-24082, CVE-2021-24083, CVE-2021-24084, CVE-2021-24086, CVE-2021-24088, CVE-2021-24091, CVE-2021-24093 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.