May 25, 2022
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
Hitachi-sec-2022-305
CVE-2022-21972 | Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
CVE-2022-22011 | Windows Graphics Component Information Disclosure Vulnerability
CVE-2022-22012 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-22013 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-22014 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-22015 | Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
CVE-2022-22016 | Windows Play To Manager Elevation of Privilege Vulnerability
CVE-2022-22019 | Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2022-23270 | Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
CVE-2022-24466 | Windows Hyper-V Security Feature Bypass Vulnerability
CVE-2022-26913 | Windows Authentication Security Feature Bypass Vulnerability
CVE-2022-26923 | Active Directory Domain Services Elevation of Privilege Vulnerability
CVE-2022-26925 | Windows LSA Spoofing Vulnerability
CVE-2022-26926 | Windows Address Book Remote Code Execution Vulnerability
CVE-2022-26927 | Windows Graphics Component Remote Code Execution Vulnerability
CVE-2022-26930 | Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2022-26931 | Windows Kerberos Elevation of Privilege Vulnerability
CVE-2022-26933 | Windows NTFS Information Disclosure Vulnerability
CVE-2022-26934 | Windows Graphics Component Information Disclosure Vulnerability
CVE-2022-26935 | Windows WLAN Auto Config Service Information Disclosure Vulnerability
CVE-2022-26936 | Windows Server Service Information Disclosure Vulnerability
CVE-2022-29103 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2022-29104 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-29105 | Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2022-29112 | Windows Graphics Component Information Disclosure Vulnerability
CVE-2022-29113 | Windows Digital Media Receiver Elevation of Privilege Vulnerability
CVE-2022-29114 | Windows Print Spooler Information Disclosure Vulnerability
CVE-2022-29115 | Windows Fax Service Remote Code Execution Vulnerability
CVE-2022-29121 | Windows WLAN Auto Config Service Denial of Service Vulnerability
CVE-2022-29125 | Windows Push Notifications Apps Elevation of Privilege Vulnerability
CVE-2022-29126 | Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability
CVE-2022-29127 | BitLocker Security Feature Bypass Vulnerability
CVE-2022-29128 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-29129 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-29130 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-29131 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-29132 | Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-29137 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-29139 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-29140 | Windows Print Spooler Information Disclosure Vulnerability
CVE-2022-29141 | Windows LDAP Remote Code Execution Vulnerability
CVE-2022-29142 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-30130 | .NET Framework Denial of Service Vulnerability
The following table shows the affected products.
Product Name |
Hitachi Virtual Storage Platform 5200, 5600, 5200H, 5600H Hitachi Virtual Storage Platform 5100, 5500, 5100H, 5500H |
---|---|
Vulnerability ID |
CVE-2022-30130, CVE-2022-21972, CVE-2022-22011, CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-22015, CVE-2022-22016, CVE-2022-22019, CVE-2022-23270, CVE-2022-24466, CVE-2022-26913, CVE-2022-26923, CVE-2022-26925, CVE-2022-26926, CVE-2022-26927, CVE-2022-26930, CVE-2022-26931, CVE-2022-26933, CVE-2022-26934, CVE-2022-26935, CVE-2022-26936, CVE-2022-29103, CVE-2022-29104, CVE-2022-29105, CVE-2022-29112, CVE-2022-29113, CVE-2022-29114, CVE-2022-29115, CVE-2022-29121, CVE-2022-29125, CVE-2022-29126, CVE-2022-29127, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29132, CVE-2022-29137, CVE-2022-29139, CVE-2022-29140, CVE-2022-29141, CVE-2022-29142 |
Product Name |
Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform VX7 |
---|---|
Vulnerability ID |
CVE-2022-21972, CVE-2022-22011, CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-22015, CVE-2022-22016, CVE-2022-22019, CVE-2022-23270, CVE-2022-26923, CVE-2022-26925, CVE-2022-26926, CVE-2022-26930, CVE-2022-26931, CVE-2022-26933, CVE-2022-26934, CVE-2022-26935, CVE-2022-26936, CVE-2022-29103, CVE-2022-29104, CVE-2022-29105, CVE-2022-29112, CVE-2022-29114, CVE-2022-29115, CVE-2022-29121, CVE-2022-29125, CVE-2022-29126, CVE-2022-29127, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29132, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141 |
The following products are not affected by the vulnerabilities:
Please refer to the Security Update Guide (Microsoft) about the vulnerabilities.