August 17, 2021
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2021-308
CVE-2021-31183 | Windows TCP/IP Driver Denial of Service Vulnerability
CVE-2021-31961 | Windows Install Service Elevation of Privilege Vulnerability
CVE-2021-31979 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-33740 | Windows Media Remote Code Execution Vulnerability
CVE-2021-33743 | Windows Projected File System Elevation of Privilege Vulnerability
CVE-2021-33744 | Windows Secure Kernel Mode Security Feature Bypass Vulnerability
CVE-2021-33749 | Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-33750 | Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-33751 | Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-33752 | Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-33755 | Windows Hyper-V Denial of Service Vulnerability
CVE-2021-33756 | Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-33757 | Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability
CVE-2021-33759 | Windows Desktop Bridge Elevation of Privilege Vulnerability
CVE-2021-33761 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2021-33763 | Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2021-33765 | Windows Installer Spoofing Vulnerability
CVE-2021-33771 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-33773 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2021-33774 | Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-33781 | Active Directory Security Feature Bypass Vulnerability
CVE-2021-33782 | Windows Authenticode Spoofing Vulnerability
CVE-2021-33783 | Windows SMB Information Disclosure Vulnerability
CVE-2021-33784 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2021-33785 | Windows AF_UNIX Socket Provider Denial of Service Vulnerability
CVE-2021-33788 | Windows LSA Denial of Service Vulnerability
CVE-2021-34438 | Windows Font Driver Host Remote Code Execution Vulnerability
CVE-2021-34439 | Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2021-34440 | GDI+ Information Disclosure Vulnerability
CVE-2021-34441 | Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2021-34445 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2021-34446 | Windows HTML Platforms Security Feature Bypass Vulnerability
CVE-2021-34447 | Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2021-34448 | Scripting Engine Memory Corruption Vulnerability
CVE-2021-34449 | Win32k Elevation of Privilege Vulnerability
CVE-2021-34450 | Windows Hyper-V Remote Code Execution Vulnerability
CVE-2021-34454 | Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2021-34455 | Windows File History Service Elevation of Privilege Vulnerability
CVE-2021-34456 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2021-34457 | Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2021-34459 | Windows App Container Elevation of Privilege Vulnerability
CVE-2021-34460 | Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-34462 | Windows App X Deployment Extensions Elevation of Privilege Vulnerability
CVE-2021-34466 | Windows Hello Security Feature Bypass Vulnerability
CVE-2021-34476 | Bowser.sys Denial of Service Vulnerability
CVE-2021-34488 | Windows Console Driver Elevation of Privilege Vulnerability
CVE-2021-34489 | Direct Write Remote Code Execution Vulnerability
CVE-2021-34490 | Windows TCP/IP Driver Denial of Service Vulnerability
CVE-2021-34491 | Win32k Information Disclosure Vulnerability
CVE-2021-34492 | Windows Certificate Spoofing Vulnerability
CVE-2021-34493 | Windows Partition Management Driver Elevation of Privilege Vulnerability
CVE-2021-34496 | Windows GDI Information Disclosure Vulnerability
CVE-2021-34497 | Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2021-34498 | Windows GDI Elevation of Privilege Vulnerability
CVE-2021-34500 | Windows Kernel Memory Information Disclosure Vulnerability
CVE-2021-34503 | Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2021-34504 | Windows Address Book Remote Code Execution Vulnerability
CVE-2021-34507 | Windows Remote Assistance Information Disclosure Vulnerability
CVE-2021-34508 | Windows Kernel Remote Code Execution Vulnerability
CVE-2021-34509 | Storage Spaces Controller Information Disclosure Vulnerability
CVE-2021-34510 | Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-34511 | Windows Installer Elevation of Privilege Vulnerability
CVE-2021-34512 | Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-34514 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-34516 | Win32k Elevation of Privilege Vulnerability
CVE-2021-34527 | Windows Print Spooler Remote Code Execution Vulnerability
The following table shows the affected products.
Product Name |
Hitachi Unified Storage VM (HUS VM) |
---|---|
Vulnerability ID |
CVE-2021-34460, CVE-2021-31183, CVE-2021-31979, CVE-2021-33740, CVE-2021-33749, CVE-2021-33750, CVE-2021-33752, CVE-2021-33756, CVE-2021-33757, CVE-2021-33761, CVE-2021-33763, CVE-2021-33765, CVE-2021-33771, CVE-2021-33773, CVE-2021-33782, CVE-2021-33783, CVE-2021-33788, CVE-2021-34439, CVE-2021-34440, CVE-2021-34441, CVE-2021-34446, CVE-2021-34447, CVE-2021-34448, CVE-2021-34454, CVE-2021-34455, CVE-2021-34456, CVE-2021-34457, CVE-2021-34459, CVE-2021-34462, CVE-2021-34476, CVE-2021-34491, CVE-2021-34492, CVE-2021-34493, CVE-2021-34496, CVE-2021-34497, CVE-2021-34498, CVE-2021-34500, CVE-2021-34504, CVE-2021-34507, CVE-2021-34511, CVE-2021-34512, CVE-2021-34514, CVE-2021-34516, CVE-2021-34527 |
Product Name |
Hitachi Virtual Storage Platform 5100, 5500 Hitachi Virtual Storage Platform 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2021-33781, CVE-2021-31183, CVE-2021-31961, CVE-2021-31979, CVE-2021-33740, CVE-2021-33743, CVE-2021-33744, CVE-2021-33749, CVE-2021-33750, CVE-2021-33751, CVE-2021-33752, CVE-2021-33756, CVE-2021-33757, CVE-2021-33759, CVE-2021-33761, CVE-2021-33763, CVE-2021-33765, CVE-2021-33771, CVE-2021-33773, CVE-2021-33774, CVE-2021-33782, CVE-2021-33783, CVE-2021-33784, CVE-2021-33785, CVE-2021-33788, CVE-2021-34438, CVE-2021-34440, CVE-2021-34441, CVE-2021-34445, CVE-2021-34446, CVE-2021-34447, CVE-2021-34448, CVE-2021-34449, CVE-2021-34454, CVE-2021-34455, CVE-2021-34456, CVE-2021-34457, CVE-2021-34459, CVE-2021-34460, CVE-2021-34462, CVE-2021-34466, CVE-2021-34476, CVE-2021-34488, CVE-2021-34489, CVE-2021-34490, CVE-2021-34491, CVE-2021-34492, CVE-2021-34493, CVE-2021-34496, CVE-2021-34497, CVE-2021-34498, CVE-2021-34500, CVE-2021-34503, CVE-2021-34504, CVE-2021-34507, CVE-2021-34508, CVE-2021-34509, CVE-2021-34510, CVE-2021-34511, CVE-2021-34512, CVE-2021-34514, CVE-2021-34516, CVE-2021-34527 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2021-34460, CVE-2021-31183, CVE-2021-31979, CVE-2021-33740, CVE-2021-33749, CVE-2021-33750, CVE-2021-33752, CVE-2021-33756, CVE-2021-33757, CVE-2021-33761, CVE-2021-33763, CVE-2021-33765, CVE-2021-33771, CVE-2021-33773, CVE-2021-33782, CVE-2021-33783, CVE-2021-33788, CVE-2021-34439, CVE-2021-34440, CVE-2021-34441, CVE-2021-34446, CVE-2021-34447, CVE-2021-34448, CVE-2021-34454, CVE-2021-34455, CVE-2021-34456, CVE-2021-34457, CVE-2021-34459, CVE-2021-34462, CVE-2021-34476, CVE-2021-34491, CVE-2021-34492, CVE-2021-34493, CVE-2021-34496, CVE-2021-34497, CVE-2021-34498, CVE-2021-34500, CVE-2021-34504, CVE-2021-34507, CVE-2021-34511, CVE-2021-34512, CVE-2021-34514, CVE-2021-34516, CVE-2021-34527 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.