What is CVE-2022-4895?

CVE-2022-4895 is a high-severity vulnerability in Hitachi Infrastructure Analytics Advisor, classified under Improper Certificate Validation. CVSS score: 8.6/10. Published 2023-02-28.

How severe is CVE-2022-4895?

High severity. CVSS v3 base score is 8.6 out of 10.

Vulnerability in Hitachi Infrastructure Analytics Advisor

CVE-2022-4895

Improper Certificate Validation vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component) allows Man in the Middle Attack.This issue affe…

Vulnerability class: Improper Certificate Validation

EPSS: 0.002 (43.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.6 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L.

Affected products

Hitachi Infrastructure Analytics Advisor — versions 2.0.0-00
Hitachi Ops Center Analyzer — versions 10.0.0-00

Weakness classification (CWE)

CWE-295 — Improper Certificate Validation

References

www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-105/in… (vendor-advisory)

Frequently asked questions

What is CVE-2022-4895?: CVE-2022-4895 is a high-severity vulnerability in Hitachi Infrastructure Analytics Advisor, classified under Improper Certificate Validation. CVSS score: 8.6/10. Published 2023-02-28.
How severe is CVE-2022-4895?: High severity. CVSS v3 base score is 8.6 out of 10.