CVE-2024-4679

Summary

Incorrect Default Permissions vulnerability in Hitachi JP1/Extensible SNMP Agent for Windows, Hitachi JP1/Extensible SNMP Agent on Windows, Hitachi Job Management Partner1/Extensible SNMP Agent on Windows allows File Manipulation.This issue affects JP1/Extensible SNMP Agent for Windows: from 12-00 before 12-00-01, from 11-00 through 11-00-*; JP1/Extensible SNMP Agent: from 10-10 through 10-10-01, from 10-00 through 10-00-02, from 09-00 through 09-00-04; Job Management Partner1/Extensible SNMP Agent: from 10-10 through 10-10-01, from 10-00 through 10-00-02, from 09-00 through 09-00-04.

Affected Software

VendorProductVersion RangeStatus
HitachiJP1/Extensible SNMP Agent for Windows12-00 < 12-00-01affected
HitachiJP1/Extensible SNMP Agent for Windows11-00 <= 11-00-*affected
HitachiJP1/Extensible SNMP Agent10-10 <= 10-10-01affected
HitachiJP1/Extensible SNMP Agent10-00 <= 10-00-02affected
HitachiJP1/Extensible SNMP Agent09-00 <= 09-00-04affected
HitachiJob Management Partner1/Extensible SNMP Agent10-10 <= 10-10-01affected
HitachiJob Management Partner1/Extensible SNMP Agent10-00 <= 10-00-02affected
HitachiJob Management Partner1/Extensible SNMP Agent09-00 <= 09-00-04affected

Weaknesses

  • CWE-276: CWE-276 Incorrect Default Permissions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References