Vulnerability Description
Improper Certificate Validation vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component) allows Man in the Middle Attack.This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.1-00.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hitachi | Infrastructure Analytics Advisor | >= 2.0.0-00, < 10.9.1-00 |
| Hitachi | Ops Center Analyzer | >= 10.0.0-00, < 10.9.1-00 |
| Linux | Linux Kernel | - |
Related Weaknesses (CWE)
References
- https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023Vendor Advisory
- https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023Vendor Advisory
FAQ
What is CVE-2022-4895?
CVE-2022-4895 is a vulnerability with a CVSS score of 8.6 (HIGH). Improper Certificate Validation vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component) allows M...
How severe is CVE-2022-4895?
CVE-2022-4895 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-4895?
Check the references section above for vendor advisories and patch information. Affected products include: Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer, Linux Linux Kernel.