March 31, 2022
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2022-303
CVE-2022-21967 | Xbox Live Auth Manager for Windows Elevation of Privilege Vulnerability
CVE-2022-21973 | Windows Media Center Update Denial of Service Vulnerability
CVE-2022-21975 | Windows Hyper-V Denial of Service Vulnerability
CVE-2022-21977 | Media Foundation Information Disclosure Vulnerability
CVE-2022-21990 | Remote Desktop Client Remote Code Execution Vulnerability
CVE-2022-22010 | Media Foundation Information Disclosure Vulnerability
CVE-2022-23253 | Point-to-Point Tunneling Protocol Denial of Service Vulnerability
CVE-2022-23278 | Microsoft Defender for Endpoint Spoofing Vulnerability
CVE-2022-23281 | Windows Common Log File System Driver Information Disclosure Vulnerability
CVE-2022-23283 | Windows ALPC Elevation of Privilege Vulnerability
CVE-2022-23284 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-23285 | Remote Desktop Client Remote Code Execution Vulnerability
CVE-2022-23286 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2022-23287 | Windows ALPC Elevation of Privilege Vulnerability
CVE-2022-23288 | Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2022-23290 | Windows Inking COM Elevation of Privilege Vulnerability
CVE-2022-23291 | Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2022-23293 | Windows Fast FAT File System Driver Elevation of Privilege Vulnerability
CVE-2022-23294 | Windows Event Tracing Remote Code Execution Vulnerability
CVE-2022-23296 | Windows Installer Elevation of Privilege Vulnerability
CVE-2022-23297 | Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability
CVE-2022-23298 | Windows NT OS Kernel Elevation of Privilege Vulnerability
CVE-2022-23299 | Windows PDEV Elevation of Privilege Vulnerability
CVE-2022-24454 | Windows Security Support Provider Interface Elevation of Privilege Vulnerability
CVE-2022-24455 | Windows CD-ROM Driver Elevation of Privilege Vulnerability
CVE-2022-24459 | Windows Fax and Scan Service Elevation of Privilege Vulnerability
CVE-2022-24460 | Tablet Windows User Interface Application Elevation of Privilege Vulnerability
CVE-2022-24502 | Windows HTML Platforms Security Feature Bypass Vulnerability
CVE-2022-24503 | Remote Desktop Protocol Client Information Disclosure Vulnerability
CVE-2022-24505 | Windows ALPC Elevation of Privilege Vulnerability
CVE-2022-24507 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
The following table shows the affected products.
Product Name |
Hitachi Virtual Storage Platform 5200, 5600, 5200H, 5600H Hitachi Virtual Storage Platform 5100, 5500, 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2022-21967, CVE-2022-21975, CVE-2022-21977, CVE-2022-21990, CVE-2022-22010, CVE-2022-23253, CVE-2022-23278, CVE-2022-23281, CVE-2022-23283, CVE-2022-23284, CVE-2022-23285, CVE-2022-23286, CVE-2022-23287, CVE-2022-23288, CVE-2022-23290, CVE-2022-23291, CVE-2022-23293, CVE-2022-23294, CVE-2022-23296, CVE-2022-23297, CVE-2022-23298, CVE-2022-23299, CVE-2022-24454, CVE-2022-24455, CVE-2022-24459, CVE-2022-24460, CVE-2022-24502, CVE-2022-24503, CVE-2022-24505, CVE-2022-24507 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2022-21967, CVE-2022-21975, CVE-2022-21977, CVE-2022-21990, CVE-2022-22010, CVE-2022-23253, CVE-2022-23281, CVE-2022-23283, CVE-2022-23284, CVE-2022-23285, CVE-2022-23287, CVE-2022-23290, CVE-2022-23293, CVE-2022-23294, CVE-2022-23296, CVE-2022-23297, CVE-2022-23298, CVE-2022-23299, CVE-2022-24454, CVE-2022-24455, CVE-2022-24459, CVE-2022-24460, CVE-2022-24502, CVE-2022-24503, CVE-2022-24505 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.