{ "id": "CVE-2022-34881", "sourceIdentifier": "hirt@hitachi.co.jp", "published": "2022-12-06T02:15:09.650", "lastModified": "2023-11-07T03:48:47.223", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "Generation of Error Message Containing Sensitive Information vulnerability in Hitachi JP1/Automatic Operation allows local users to gain sensitive information.\n\nThis issue affects JP1/Automatic Operation: from 10-00 through 10-54-03, from 11-00 before 11-51-09, from 12-00 before 12-60-01." } ], "metrics": { "cvssMetricV31": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "baseSeverity": "LOW" }, "exploitabilityScore": 1.8, "impactScore": 1.4 }, { "source": "50d0f415-c707-4733-9afc-8f6c0e9b3f82", "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "baseSeverity": "LOW" }, "exploitabilityScore": 1.8, "impactScore": 1.4 } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-209" } ] }, { "source": "50d0f415-c707-4733-9afc-8f6c0e9b3f82", "type": "Secondary", "description": [ { "lang": "en", "value": "CWE-209" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-00", "versionEndIncluding": "10-00-02", "matchCriteriaId": "F9021400-6A9D-4F85-BE27-0248002185B2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-10", "versionEndIncluding": "10-10-01", "matchCriteriaId": "5F80CBC4-2842-4589-A281-810C9615A0E1" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-12", "versionEndIncluding": "10-12-05", "matchCriteriaId": "1A42F614-457A-47D8-93C0-EE4D491938BE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-13", "versionEndIncluding": "10-13-04", "matchCriteriaId": "DB9EA6D7-DC03-429E-A74E-182D49C73FF4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-52", "versionEndIncluding": "10-52-05", "matchCriteriaId": "41FED1A9-A728-478B-993E-2F1CD8248293" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-53", "versionEndIncluding": "10-53-03", "matchCriteriaId": "C158893C-538C-4F66-9D05-0D756A1439AD" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-54", "versionEndIncluding": "10-54-03", "matchCriteriaId": "6D3BAE75-0F0A-429B-8787-DF72D4E5DF83" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-00", "versionEndIncluding": "11-00-05", "matchCriteriaId": "F466B80B-96A6-4640-B987-AFEE5811EFD9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-01", "versionEndIncluding": "11-01-03", "matchCriteriaId": "47BC1EA7-14B5-452B-9DAB-9BDFF61CF153" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-02", "versionEndIncluding": "11-02-01", "matchCriteriaId": "4033C2AF-2796-44EE-BC03-B22FC7A3ABAA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-10", "versionEndIncluding": "11-10-07", "matchCriteriaId": "013A2663-02D0-44F6-B9A5-45AAAF71D76C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-11", "versionEndIncluding": "11-11-05", "matchCriteriaId": "D1C2E11D-242C-431F-B9E4-1DB6B71704EE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-12", "versionEndIncluding": "11-12-04", "matchCriteriaId": "A487A0FA-B141-4324-BB23-4D43E63EEF44" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-51", "versionEndIncluding": "11-51-08", "matchCriteriaId": "427F4FF8-1374-4E4A-925F-BA717EB800FA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "12-00", "versionEndIncluding": "12-00-01", "matchCriteriaId": "887B9299-6061-44D6-9557-DDF1245DB4E8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "12-01", "versionEndIncluding": "12-01-02", "matchCriteriaId": "5782D37A-3945-4A36-A178-321D04243711" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "12-10", "versionEndIncluding": "12-10-02", "matchCriteriaId": "DC3B60BB-82FE-4DBE-8A62-A7B14C446A40" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "12-50", "versionEndIncluding": "12-50-01", "matchCriteriaId": "A06D9EA1-5FC0-4863-9878-165F4253F510" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:10-01:*:*:*:*:*:*:*", "matchCriteriaId": "02D800BF-3EA8-4E78-BF60-E8E667589DFF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:10-02:*:*:*:*:*:*:*", "matchCriteriaId": "E3D7637E-9A57-4045-AECD-EB73B54821D5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:10-11:*:*:*:*:*:*:*", "matchCriteriaId": "AC214CC8-C572-422F-81C1-15537858C6F8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:10-50:*:*:*:*:*:*:*", "matchCriteriaId": "252F973F-6591-4BEE-9DAD-3EDEBA8E5EB0" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:10-51:*:*:*:*:*:*:*", "matchCriteriaId": "0DCEB553-DACA-4E45-9249-CC63AAEC6D6E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:11-50:*:*:*:*:*:*:*", "matchCriteriaId": "472F3089-C3FA-4B4B-ACE1-F4F4298997E6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:12-60:*:*:*:*:*:*:*", "matchCriteriaId": "D6C4F3B1-8853-4D12-990A-3F14A84F5CA1" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-52", "versionEndIncluding": "10-52-05", "matchCriteriaId": "41FED1A9-A728-478B-993E-2F1CD8248293" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-53", "versionEndIncluding": "10-53-03", "matchCriteriaId": "C158893C-538C-4F66-9D05-0D756A1439AD" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "10-54", "versionEndIncluding": "10-54-03", "matchCriteriaId": "6D3BAE75-0F0A-429B-8787-DF72D4E5DF83" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-00", "versionEndIncluding": "11-00-05", "matchCriteriaId": "F466B80B-96A6-4640-B987-AFEE5811EFD9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-01", "versionEndIncluding": "11-01-03", "matchCriteriaId": "47BC1EA7-14B5-452B-9DAB-9BDFF61CF153" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-02", "versionEndIncluding": "11-02-01", "matchCriteriaId": "4033C2AF-2796-44EE-BC03-B22FC7A3ABAA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-10", "versionEndIncluding": "11-10-06", "matchCriteriaId": "DF2FBB10-8BBB-4CA3-BF28-9AAB1863AD1C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-11", "versionEndIncluding": "11-11-04", "matchCriteriaId": "A258781E-88BD-4C68-BDD0-467FC561127B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-12", "versionEndIncluding": "11-12-03", "matchCriteriaId": "728C9FA4-43F0-4712-8D08-85F0DDFDA0FB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "11-51", "versionEndIncluding": "11-51-08", "matchCriteriaId": "427F4FF8-1374-4E4A-925F-BA717EB800FA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "12-00", "versionEndIncluding": "12-00-01", "matchCriteriaId": "887B9299-6061-44D6-9557-DDF1245DB4E8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "12-01", "versionEndIncluding": "12-01-02", "matchCriteriaId": "5782D37A-3945-4A36-A178-321D04243711" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "12-10", "versionEndIncluding": "12-10-02", "matchCriteriaId": "DC3B60BB-82FE-4DBE-8A62-A7B14C446A40" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:*:*:*:*:*:*:*:*", "versionStartIncluding": "12-50", "versionEndIncluding": "12-50-01", "matchCriteriaId": "A06D9EA1-5FC0-4863-9878-165F4253F510" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:11-50:*:*:*:*:*:*:*", "matchCriteriaId": "472F3089-C3FA-4B4B-ACE1-F4F4298997E6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hitachi:jp1\\/automatic_operation:12-60:*:*:*:*:*:*:*", "matchCriteriaId": "D6C4F3B1-8853-4D12-990A-3F14A84F5CA1" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1" } ] } ] } ], "references": [ { "url": "https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-140/index.html", "source": "hirt@hitachi.co.jp", "tags": [ "Vendor Advisory" ] } ] }