Hitachi Ops Center Products and Infrastructure Analytics Advisor Missing Password Field Masking Vulnerability

A vulnerability exists in Hitachi Ops Center Analyzer (detail view and probe modules), Hitachi Ops Center Analyzer viewpoint, and Hitachi Infrastructure Analytics Advisor (Data Center Analytics and Analytics probe modules) due to missing password field masking. This vulnerability affects multiple versions of the products, specifically Hitachi Ops Center Analyzer versions 10.0.0-00 prior to 11.0.8-00, Ops Center Analyzer viewpoint versions 10.8.1-00 prior to 11.0.8-00, and Infrastructure Analytics Advisor versions 3.2.0-00 prior to 11.0.8-00.

Impact

The vulnerability can lead to the exposure of sensitive password information, as password fields are not properly masked, allowing for potential interception or unauthorized access.

Remediation

Users are advised to upgrade to Hitachi Ops Center Analyzer version 11.0.8-00 or Hitachi Ops Center Analyzer viewpoint version 11.0.8-00. For Hitachi Infrastructure Analytics Advisor, upgrade to a version less than 11.0.8-00. Consult with a Hitachi support service representative for details on the fixed products.