CVE-2022-41553
MEDIUMHitachi Infrastructure Analytics Advisor <4.4.0-00 - Info Disclosure
Title source: llmDescription
Insertion of Sensitive Information into Temporary File vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Hitachi Ops Center Analyzer probe component) allows local users to gain sensitive information. This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html
Scores
CVSS v3
6.5
EPSS
0.0005
EPSS Percentile
14.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-532
Status
published
Products (2)
hitachi/infrastructure_analytics_advisor
2.0.0-00 - 4.4.0-00
hitachi/ops_center_analyzer
10.0.0-00 - 10.9.0-00
Published
Nov 01, 2022
Tracked Since
Feb 18, 2026