CVE-2022-2637

Published: Oct 6, 2022Modified: Feb 25, 2026

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Incorrect Privilege Assignment vulnerability in Hitachi Hitachi Storage Plug-in for VMware vCenter allows remote authenticated users to cause privilege escalation.This issue affects Hitachi Storage Plug-in for VMware vCenter: from 04.8.0 before 04.9.0.

Affected (1)

Products: Hitachi: Storage Plug In

1 product

Storage Plug In

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Hitachi Storage Plug In	Version 04.8.0

Related CWEs

Incorrect Privilege Assignment

A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (2)

https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-131/index.html

Source: hirt@hitachi.co.jp

Vendor Advisory

https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-131/index.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.