CVE-2024-8201

Summary

Cross-Site WebSocket Hijacking vulnerability in Hitachi Ops Center Analyzer (RAID Agent component).This issue affects Hitachi Ops Center Analyzer: from 10.8.0-00 before 11.0.4-00; Hitachi Ops Center Analyzer: from 10.9.0-00 before 11.0.4-00.

Affected Software

VendorProductVersion RangeStatus
HitachiHitachi Ops Center Analyzer10.8.0-00 < 11.0.4-00affected
HitachiHitachi Ops Center Analyzer10.9.0-00 < 11.0.4-00affected

Weaknesses

  • CWE-1385: CWE-1385 Missing Origin Validation in WebSockets

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References