Description

Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 contains a remote code execution vulnerability because of an Integer Overflow. An attacker with network access to port 31016 may exploit this issue to execute code with unrestricted privileges on the underlying OS.

Related CPE's

a

hitachi

it_operations_director

4

a

hitachi

job_management_partner_1\/it_desktop_management-manager

3

a

hitachi

job_management_partner_1\/it_desktop_management_2-manager

Vulnerable

a

hitachi

job_management_partner_1\/remote_control_agent

6

a

hitachi

job_management_partner_1\/software_distribution_client

6

a

hitachi

job_management_partner_1\/software_distribution_manager

6

a

hitachi

jp1\/it_desktop_management-manager

6

a

hitachi

jp1\/it_desktop_management_2-manager

9

a

hitachi

jp1\/it_desktop_management_2-operations_director

7

a

hitachi

jp1\/netdm\/dm_client

16

a

hitachi

jp1\/netdm\/dm_client-remote_control_feature

13

a

hitachi

jp1\/netdm\/dm_manager

14

a

hitachi

jp1\/netm\/remote_control_agent

12

a

hitachi

jp1\/remote_control_agent

2

o

microsoft

windows

-

References

https://www.hitachi.com/hirt/security/index.html

Vendor Advisory

https://www.hitachi.com/hirt/security/index.html

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-190

CVSS impact metrics

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.1 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-10-12T17:15:07.620Z

4 years ago

Last modified

2024-11-21T05:01:33.450Z

1 year ago