VYPR
Unrated severityNVD Advisory· Published Oct 3, 2023· Updated Aug 2, 2024

File and Directory Permission Vulnerability in JP1/Performance Management

CVE-2023-3440

Description

Incorrect Default Permissions vulnerability in Hitachi JP1/Performance Management on Windows allows File Manipulation.This issue affects JP1/Performance Management - Manager: from 09-00 before 12-50-07; JP1/Performance Management - Base: from 09-00 through 10-50-*; JP1/Performance Management - Agent Option for Application Server: from 11-00 before 11-50-16; JP1/Performance Management - Agent Option for Enterprise Applications: from 09-00 before 12-00-14; JP1/Performance Management - Agent Option for HiRDB: from 09-00 before 12-00-14; JP1/Performance Management - Agent Option for IBM Lotus Domino: from 10-00 before 11-50-16; JP1/Performance Management - Agent Option for Microsoft(R) Exchange Server: from 09-00 before  12-00-14; JP1/Performance Management - Agent Option for Microsoft(R) Internet Information Server: from 09-00 before 12-00-14; JP1/Performance Management - Agent Option for Microsoft(R) SQL Server: from 09-00 before 12-50-07; JP1/Performance Management - Agent Option for Oracle: from 09-00 before  12-10-08; JP1/Performance Management - Agent Option for Platform: from 09-00 before 12-50-07; JP1/Performance Management - Agent Option for Service Response: from 09-00 before 11-50-16; JP1/Performance Management - Agent Option for Transaction System: from 11-00 before 12-00-14; JP1/Performance Management - Remote Monitor for Microsoft(R) SQL Server: from 09-00 before 12-50-07; JP1/Performance Management - Remote Monitor for Oracle: from 09-00 before 12-10-08; JP1/Performance Management - Remote Monitor for Platform: from 09-00 before 12-10-08; JP1/Performance Management - Remote Monitor for Virtual Machine: from 10-00 before 12-50-07; JP1/Performance Management - Agent Option for Domino: from 09-00 through 09-00-*; JP1/Performance Management - Agent Option for IBM WebSphere Application Server: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for IBM WebSphere MQ: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for JP1/AJS3: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for OpenTP1: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for Oracle WebLogic Server: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for uCosminexus Application Server: from 09-00 through 10-00-*; JP1/Performance Management - Agent Option for Virtual Machine: from 09-00 through 09-01-*.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

26
  • multiple components, see description+ 2 more
    • (no CPE)range: multiple components, see description
    • (no CPE)range: 09-00
    • (no CPE)range: 09-00
  • 11-00+ 9 more
    • (no CPE)range: 11-00
    • (no CPE)range: 09-00
    • (no CPE)range: 09-00
    • (no CPE)range: 09-00
    • (no CPE)range: 09-00
    • (no CPE)range: 09-00
    • (no CPE)range: 09-00
    • (no CPE)range: 09-00
    • (no CPE)range: 09-00
    • (no CPE)range: 09-00
  • Hitachi/JP1/Performance Management - Agent Option for Enterprise Applicationsv5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Agent Option for IBM Lotus Dominov5
    Range: 10-00
  • Hitachi/JP1/Performance Management - Agent Option for IBM WebSphere Application Serverv5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Agent Option for Microsoft(R) Exchange Serverv5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Agent Option for Microsoft(R) Internet Information Serverv5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Agent Option for Microsoft(R) SQL Serverv5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Agent Option for Service Responsev5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Agent Option for Transaction Systemv5
    Range: 11-00
  • Hitachi/JP1/Performance Management - Agent Option for uCosminexus Application Serverv5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Remote Monitor for Microsoft(R) SQL Serverv5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Remote Monitor for Oraclev5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Remote Monitor for Platformv5
    Range: 09-00
  • Hitachi/JP1/Performance Management - Remote Monitor for Virtual Machinev5
    Range: 10-00

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.