What is CVE-2024-10205?

CVE-2024-10205 is a critical-severity vulnerability in Hitachi Infrastructure Analytics Advisor, classified under Missing Authentication for Critical Function. CVSS score: 9.4/10. Published 2024-12-17.

How severe is CVE-2024-10205?

Critical severity. CVSS v3 base score is 9.4 out of 10.

Auth bypass in Hitachi Infrastructure Analytics Advisor

CVE-2024-10205

Authentication Bypass vulnerability in Hitachi Ops Center Analyzer on Linux, 64 bit (Hitachi Ops Center Analyzer detail view component), Hitachi Infrastructure Analytics Advisor on Linux, 64 bit (Hitachi Data Center Analytics component …

Vulnerability class: Broken Authentication

EPSS: 0.001 (27.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.4 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H.

Affected products

Hitachi Infrastructure Analytics Advisor — versions 2.1.0-00
Hitachi Ops Center Analyzer — versions 10.0.0-00

Weakness classification (CWE)

CWE-306 — Missing Authentication for Critical Function

References

www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-151/in… (vendor-advisory)

Frequently asked questions

What is CVE-2024-10205?: CVE-2024-10205 is a critical-severity vulnerability in Hitachi Infrastructure Analytics Advisor, classified under Missing Authentication for Critical Function. CVSS score: 9.4/10. Published 2024-12-17.
How severe is CVE-2024-10205?: Critical severity. CVSS v3 base score is 9.4 out of 10.