March 25, 2024
Hitachi, Ltd. IT Platform Products Management Division
Hitachi Disk Array Systems have the following vulnerability.
hitachi-sec-2022-313
Log files of Hitachi Disk Array Systems have the CVE-2022-36407 Plaintext Storage of Passwords vulnerability.
To collect log files, you need to log in to the Hitachi Disk Array System.
The following table shows the affected products.
Product Name |
Hitachi Unified Storage VM Hitachi Virtual Storage Platform Hitachi Virtual Storage Platform VP9500 Hitachi Virtual Storage Platform G1000, G1500 Hitachi Virtual Storage Platform F1500 Hitachi Virtual Storage Platform 5100, 5500, 5100H, 5500H Hitachi Virtual Storage Platform 5200, 5600, 5200H, 5600H Hitachi Virtual Storage Platform G100, G200, G400, G600, G800 Hitachi Virtual Storage Platform F400, F600, F800 Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900 Hitachi Virtual Storage Platform F350, F370, F700, F900 Hitachi Virtual Storage Platform E590, E790, E990, E1090, E590H, E790H, E1090H |
---|
The following table shows the modified micro-program version. Replace the micro-program with these versions.
Micro-program Version |
DKCMAIN Ver. 73(75)-03-75-X0/00, SVP Ver. 73(75)-03-74/00 DKCMAIN Ver. 70-06-74-00/00, SVP Ver. 70-06-58/00 DKCMAIN Ver. 80-06-92-00/00, SVP Ver. 80-06-87/00 DKCMAIN Ver. 90-08-81-00/00, SVP Ver. 90-08-81/00 DKCMAIN Ver. 90-08-62-00/00, SVP Ver. 90-08-62/00 DKCMAIN Ver. 90-08-43-00/00, SVP Ver. 90-08-43/00 DKCMAIN Ver. 83-05-47-X0/00, SVP Ver. 83-05-51-X0/00 DKCMAIN Ver. 83-06-19-X0/00, SVP Ver. 83-06-20-X0/00 DKCMAIN Ver. 88-08-09-XX/00, SVP Ver. 88-08-11-X0/02 DKCMAIN Ver. 93-06-81-X0/00, SVP Ver. 93-06-81-X0/00 DKCMAIN Ver. 93-06-62-X0/00, SVP Ver. 93-06-62-X0/00 DKCMAIN Ver. 93-06-43-X0/00, SVP Ver. 93-06-43-X0/00 |
---|
None.
None