November 5, 2021
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2021-312
CVE-2021-26441 | Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-26442 | Windows HTTP.sys Elevation of Privilege Vulnerability
CVE-2021-36953 | Windows TCP/IP Denial of Service Vulnerability
CVE-2021-36970 | Windows Print Spooler Spoofing Vulnerability
CVE-2021-38662 | Windows Fast FAT File System Driver Information Disclosure Vulnerability
CVE-2021-38663 | Windows ex FAT File System Information Disclosure Vulnerability
CVE-2021-40443 | Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-40449 | Win32k Elevation of Privilege Vulnerability
CVE-2021-40450 | Win32k Elevation of Privilege Vulnerability
CVE-2021-40454 | Rich Text Edit Control Information Disclosure Vulnerability
CVE-2021-40455 | Windows Installer Spoofing Vulnerability
CVE-2021-40460 | Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability
CVE-2021-40462 | Windows Media Foundation Dolby Digital Atmos Decoders Remote Code Execution Vulnerability
CVE-2021-40463 | Windows NAT Denial of Service Vulnerability
CVE-2021-40464 | Windows Nearby Sharing Elevation of Privilege Vulnerability
CVE-2021-40465 | Windows Text Shaping Remote Code Execution Vulnerability
CVE-2021-40466 | Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-40467 | Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-40470 | DirectX Graphics Kernel Elevation of Privilege Vulnerability
CVE-2021-40475 | Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
CVE-2021-40476 | Windows App Container Elevation Of Privilege Vulnerability
CVE-2021-40477 | Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-40478 | Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-40488 | Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-40489 | Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-41330 | Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2021-41331 | Windows Media Audio Decoder Remote Code Execution Vulnerability
CVE-2021-41332 | Windows Print Spooler Information Disclosure Vulnerability
CVE-2021-41335 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-41338 | Windows App Container Firewall Rules Security Feature Bypass Vulnerability
CVE-2021-41340 | Windows Graphics Component Remote Code Execution Vulnerability
CVE-2021-41342 | Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2021-41343 | Windows Fast FAT File System Driver Information Disclosure Vulnerability
CVE-2021-41345 | Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-41347 | Windows App X Deployment Service Elevation of Privilege Vulnerability
The following table shows the affected products.
Product Name |
Hitachi Unified Storage VM (HUS VM) |
---|---|
Vulnerability ID |
CVE-2021-26441, CVE-2021-26442, CVE-2021-36953, CVE-2021-36970, CVE-2021-38662, CVE-2021-38663, CVE-2021-40443, CVE-2021-40449, CVE-2021-40454, CVE-2021-40455, CVE-2021-40460, CVE-2021-40463, CVE-2021-40465, CVE-2021-40466, CVE-2021-40467, CVE-2021-40470, CVE-2021-40476, CVE-2021-40477, CVE-2021-40478, CVE-2021-40488, CVE-2021-40489, CVE-2021-41331, CVE-2021-41332, CVE-2021-41335, CVE-2021-41338, CVE-2021-41340, CVE-2021-41342, CVE-2021-41343, CVE-2021-41345, CVE-2021-41347 |
Product Name |
Hitachi Virtual Storage Platform 5100, 5500 Hitachi Virtual Storage Platform 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2021-26441, CVE-2021-26442, CVE-2021-36953, CVE-2021-36970, CVE-2021-38662, CVE-2021-38663, CVE-2021-40443, CVE-2021-40449, CVE-2021-40450, CVE-2021-40454, CVE-2021-40455, CVE-2021-40460, CVE-2021-40462, CVE-2021-40463, CVE-2021-40464, CVE-2021-40465, CVE-2021-40466, CVE-2021-40467, CVE-2021-40470, CVE-2021-40475, CVE-2021-40476, CVE-2021-40477, CVE-2021-40478, CVE-2021-40488, CVE-2021-40489, CVE-2021-41330, CVE-2021-41331, CVE-2021-41332, CVE-2021-41335, CVE-2021-41338, CVE-2021-41340, CVE-2021-41342, CVE-2021-41343, CVE-2021-41345, CVE-2021-41347 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2021-26441, CVE-2021-26442, CVE-2021-36953, CVE-2021-36970, CVE-2021-38662, CVE-2021-38663, CVE-2021-40443, CVE-2021-40449, CVE-2021-40454, CVE-2021-40455, CVE-2021-40460, CVE-2021-40463, CVE-2021-40465, CVE-2021-40466, CVE-2021-40467, CVE-2021-40470, CVE-2021-40476, CVE-2021-40477, CVE-2021-40478, CVE-2021-40488, CVE-2021-40489, CVE-2021-41331, CVE-2021-41332, CVE-2021-41335, CVE-2021-41338, CVE-2021-41340, CVE-2021-41342, CVE-2021-41343, CVE-2021-41345, CVE-2021-41347 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.