CVE-2022-4146: EL Injection Vulnerability in Hitachi Replication Manager
First published: Tue Jul 18 2023(Updated: )
Expression Language Injection vulnerability in Hitachi Replication Manager on Windows, Linux, Solaris allows Code Injection.This issue affects Hitachi Replication Manager: before 8.8.5-02.
Credit: hirt@hitachi.co.jp hirt@hitachi.co.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hitachi Replication Manager | <8.8.5-02 | |
| Linux Linux kernel | ||
| Microsoft Windows | ||
| Oracle Solaris |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the CVE ID for this vulnerability?
The CVE ID for this vulnerability is CVE-2022-4146.
What is the severity of CVE-2022-4146?
The severity of CVE-2022-4146 is critical with a score of 9.8.
Which software version is affected by CVE-2022-4146?
The affected software version is Hitachi Replication Manager before 8.8.5-02.
What is the impact of CVE-2022-4146?
CVE-2022-4146 allows code injection, which can lead to unauthorized access, data loss, or system compromise.
Where can I find more information about CVE-2022-4146?
You can find more information about CVE-2022-4146 on the official Hitachi website: [link](https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-123/index.html).
- collector/nvd-latest
- collector/nvd-index
- agent/author
- agent/type
- agent/softwarecombine
- collector/nvd-api
- agent/software-canonical-lookup-request
- agent/references
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/severity
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- agent/event
- vendor/hitachi
- canonical/hitachi replication manager
- vendor/linux
- canonical/linux linux kernel
- vendor/microsoft
- canonical/microsoft windows
- vendor/oracle
- canonical/oracle solaris