May 12, 2022
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2022-304
CVE-2022-21983 | Win32 Stream Enumeration Remote Code Execution Vulnerability
CVE-2022-22008 | Windows Hyper-V Remote Code Execution Vulnerability
CVE-2022-24474 | Windows Win32k Elevation of Privilege Vulnerability
CVE-2022-24479 | Connected User Experiences and Telemetry Elevation of Privilege Vulnerability
CVE-2022-24481 | Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2022-24482 | Windows ALPC Elevation of Privilege Vulnerability
CVE-2022-24483 | Windows Kernel Information Disclosure Vulnerability
CVE-2022-24485 | Win32 File Enumeration Remote Code Execution Vulnerability
CVE-2022-24486 | Windows Kerberos Elevation of Privilege Vulnerability
CVE-2022-24487 | Windows Local Security Authority (LSA) Remote Code Execution Vulnerability
CVE-2022-24491 | Windows Network File System Remote Code Execution Vulnerability
CVE-2022-24492 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2022-24493 | Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
CVE-2022-24494 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2022-24495 | Windows Direct Show - Remote Code Execution Vulnerability
CVE-2022-24496 | Local Security Authority (LSA) Elevation of Privilege Vulnerability
CVE-2022-24497 | Windows Network File System Remote Code Execution Vulnerability
CVE-2022-24498 | Windows iSCSI Target Service Information Disclosure Vulnerability
CVE-2022-24499 | Windows Installer Elevation of Privilege Vulnerability
CVE-2022-24500 | Windows SMB Remote Code Execution Vulnerability
CVE-2022-24521 | Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2022-24527 | Windows Endpoint Configuration Manager Elevation of Privilege Vulnerability
CVE-2022-24528 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2022-24530 | Windows Installer Elevation of Privilege Vulnerability
CVE-2022-24533 | Remote Desktop Protocol Remote Code Execution Vulnerability
CVE-2022-24534 | Win32 Stream Enumeration Remote Code Execution Vulnerability
CVE-2022-24537 | Windows Hyper-V Remote Code Execution Vulnerability
CVE-2022-24540 | Windows ALPC Elevation of Privilege Vulnerability
CVE-2022-24541 | Windows Server Service Remote Code Execution Vulnerability
CVE-2022-24542 | Windows Win32k Elevation of Privilege Vulnerability
CVE-2022-24544 | Windows Kerberos Elevation of Privilege Vulnerability
CVE-2022-24545 | Windows Kerberos Remote Code Execution Vulnerability
CVE-2022-24546 | Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2022-24547 | Windows Digital Media Receiver Elevation of Privilege Vulnerability
CVE-2022-24549 | Windows App X Package Manager Elevation of Privilege Vulnerability
CVE-2022-24550 | Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2022-26786 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26787 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26788 | PowerShell Elevation of Privilege Vulnerability
CVE-2022-26789 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26790 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26792 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26793 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26794 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26795 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26796 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26797 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26798 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26801 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26802 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26803 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-26807 | Windows Work Folder Service Elevation of Privilege Vulnerability
CVE-2022-26808 | Windows File Explorer Elevation of Privilege Vulnerability
CVE-2022-26809 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2022-26810 | Windows File Server Resource Management Service Elevation of Privilege Vulnerability
CVE-2022-26826 | Windows DNS Server Remote Code Execution Vulnerability
CVE-2022-26827 | Windows File Server Resource Management Service Elevation of Privilege Vulnerability
CVE-2022-26828 | Windows Bluetooth Driver Elevation of Privilege Vulnerability
CVE-2022-26831 | Windows LDAP Denial of Service Vulnerability
CVE-2022-26832 | .NET Framework Denial of Service Vulnerability
CVE-2022-26903 | Windows Graphics Component Remote Code Execution Vulnerability
CVE-2022-26904 | Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2022-26914 | Win32k Elevation of Privilege Vulnerability
CVE-2022-26915 | Windows Secure Channel Denial of Service Vulnerability
CVE-2022-26916 | Windows Fax Compose Form Remote Code Execution Vulnerability
CVE-2022-26917 | Windows Fax Compose Form Remote Code Execution Vulnerability
CVE-2022-26918 | Windows Fax Compose Form Remote Code Execution Vulnerability
CVE-2022-26919 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-26920 | Windows Graphics Component Information Disclosure Vulnerability Elevation of Privilege Vulnerability
The following table shows the affected products.
Product Name |
Hitachi Virtual Storage Platform 5200, 5600, 5200H, 5600H Hitachi Virtual Storage Platform 5100, 5500, 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2022-21983, CVE-2022-22008, CVE-2022-24474, CVE-2022-24479, CVE-2022-24481, CVE-2022-24482, CVE-2022-24483, CVE-2022-24485, CVE-2022-24486, CVE-2022-24487, CVE-2022-24491, CVE-2022-24492, CVE-2022-24493, CVE-2022-24494, CVE-2022-24495, CVE-2022-24496, CVE-2022-24497, CVE-2022-24498, CVE-2022-24499, CVE-2022-24500, CVE-2022-24521, CVE-2022-24527, CVE-2022-24528, CVE-2022-24530, CVE-2022-24533, CVE-2022-24534, CVE-2022-24537, CVE-2022-24540, CVE-2022-24541, CVE-2022-24542, CVE-2022-24544, CVE-2022-24545, CVE-2022-24546, CVE-2022-24547, CVE-2022-24549, CVE-2022-24550, CVE-2022-26786, CVE-2022-26787, CVE-2022-26788, CVE-2022-26789, CVE-2022-26790, CVE-2022-26792, CVE-2022-26793, CVE-2022-26794, CVE-2022-26795, CVE-2022-26796, CVE-2022-26797, CVE-2022-26798, CVE-2022-26801, CVE-2022-26802, CVE-2022-26803, CVE-2022-26807, CVE-2022-26808, CVE-2022-26809, CVE-2022-26810, CVE-2022-26826, CVE-2022-26827, CVE-2022-26828, CVE-2022-26831, CVE-2022-26903, CVE-2022-26904, CVE-2022-26914, CVE-2022-26915, CVE-2022-26916, CVE-2022-26917, CVE-2022-26918, CVE-2022-26919, CVE-2022-26920, CVE-2022-26832 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2022-21983, CVE-2022-22008, CVE-2022-24474, CVE-2022-24481, CVE-2022-24482, CVE-2022-24483, CVE-2022-24485, CVE-2022-24486, CVE-2022-24491, CVE-2022-24492, CVE-2022-24493, CVE-2022-24494, CVE-2022-24497, CVE-2022-24498, CVE-2022-24499, CVE-2022-24500, CVE-2022-24521, CVE-2022-24527, CVE-2022-24528, CVE-2022-24530, CVE-2022-24533, CVE-2022-24534, CVE-2022-24540, CVE-2022-24541, CVE-2022-24542, CVE-2022-24544, CVE-2022-24547, CVE-2022-24549, CVE-2022-24550, CVE-2022-26786, CVE-2022-26787, CVE-2022-26788, CVE-2022-26790, CVE-2022-26792, CVE-2022-26794, CVE-2022-26796, CVE-2022-26797, CVE-2022-26798, CVE-2022-26801, CVE-2022-26802, CVE-2022-26803, CVE-2022-26807, CVE-2022-26808, CVE-2022-26809, CVE-2022-26831, CVE-2022-26903, CVE-2022-26904, CVE-2022-26915, CVE-2022-26916, CVE-2022-26917, CVE-2022-26918, CVE-2022-26919 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.