Hitachi: >> Job Management Partner 1/remote Control Agent Security Vulnerabilities
Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 contains a remote code execution vulnerability because of an Integer Overflow. An attacker with network access to port 31016 may exploit this issue to execute code with unrestricted privileges on the underlying OS.
CVSS Score
8.1
EPSS Score
0.026
Published
2021-10-12
Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 calls the SendMessageTimeoutW API with arbitrary arguments via a local pipe, leading to a local privilege escalation vulnerability. An attacker who exploits this issue could execute arbitrary code on the local system.
CVSS Score
7.0
EPSS Score
0.0
Published
2021-10-12