CVE-2024-22385

Published: Jun 25, 2024Modified: Nov 21, 2024

4.4

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Exploitability: 1.8 / Impact: 2.5

Source: hirt@hitachi.co.jp (Secondary)

Description

Incorrect Default Permissions vulnerability in Hitachi Storage Provider for VMware vCenter allows local users to read and write specific files.This issue affects Hitachi Storage Provider for VMware vCenter: from 3.1.0 before 3.7.4.

Related CWEs

CWE-276

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

References (2)

https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-129/index.html

Source: hirt@hitachi.co.jp

https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-129/index.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.