{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-3314","assignerOrgId":"50d0f415-c707-4733-9afc-8f6c0e9b3f82","state":"PUBLISHED","assignerShortName":"Hitachi","dateReserved":"2026-02-27T06:34:14.106Z","datePublished":"2026-05-26T05:57:09.752Z","dateUpdated":"2026-05-26T12:22:47.157Z"},"containers":{"cna":{"providerMetadata":{"orgId":"50d0f415-c707-4733-9afc-8f6c0e9b3f82","shortName":"Hitachi","dateUpdated":"2026-05-26T05:57:09.752Z"},"title":"Missing Password Masking in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer and Hitachi Ops Center Analyzer viewpoint","problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-549","description":"CWE-549 Missing password field masking","type":"CWE"}]}],"impacts":[{"capecId":"CAPEC-555","descriptions":[{"lang":"en","value":"CAPEC-555 Remote Services with Stolen Credentials"}]}],"affected":[{"vendor":"Hitachi","product":"Hitachi Ops Center Analyzer","platforms":["Linux","64 bit"],"modules":["Hitachi Ops Center Analyzer detail view","Hitachi Ops Center Analyzer probe"],"versions":[{"status":"affected","version":"10.0.0-00","lessThan":"11.0.8-00","changes":[{"at":"11.0.8-00","status":"unaffected"}],"versionType":"custom"}],"defaultStatus":"unaffected"},{"vendor":"Hitachi","product":"Hitachi Ops Center Analyzer viewpoint","platforms":["Linux","64 bit"],"versions":[{"status":"affected","version":"10.8.1-00","lessThan":"11.0.8-00","changes":[{"at":"11.0.8-00","status":"unaffected"}],"versionType":"custom"}],"defaultStatus":"unaffected"},{"vendor":"Hitachi","product":"Hitachi Infrastructure Analytics Advisor","platforms":["Linux","64 bit"],"modules":["Data Center Analytics","Analytics probe"],"versions":[{"status":"affected","version":"3.2.0-00","lessThan":"11.0.8-00","versionType":"custom"}],"defaultStatus":"unaffected"}],"descriptions":[{"lang":"en","value":"Missing password field masking vulnerability in Hitachi Ops Center Analyzer (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe modules), Hitachi Ops Center Analyzer viewpoint, Hitachi Infrastructure Analytics Advisor (Data Center Analytics, Analytics probe modules).\n\nThis issue affects Hitachi Ops Center Analyzer: from 10.0.0-00 before 11.0.8-00; Hitachi Ops Center Analyzer viewpoint: from 10.8.1-00 before 11.0.8-00; Hitachi Infrastructure Analytics Advisor: from 3.2.0-00 before 11.0.8-00.","supportingMedia":[{"type":"text/html","base64":false,"value":"Missing password field masking vulnerability in Hitachi Ops Center Analyzer (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe modules), Hitachi Ops Center Analyzer viewpoint, Hitachi Infrastructure Analytics Advisor (Data Center Analytics, Analytics probe modules).<p>This issue affects Hitachi Ops Center Analyzer: from 10.0.0-00 before 11.0.8-00; Hitachi Ops Center Analyzer viewpoint: from 10.8.1-00 before 11.0.8-00; Hitachi Infrastructure Analytics Advisor: from 3.2.0-00 before 11.0.8-00.</p>"}]}],"references":[{"url":"https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2026-120/index.html","tags":["vendor-advisory"]}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV3_1":{"version":"3.1","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE","baseSeverity":"MEDIUM","baseScore":4.6,"vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}}],"source":{"advisory":"hitachi-sec-2026-120","discovery":"UNKNOWN"},"x_generator":{"engine":"Vulnogram 1.0.2"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-05-26T12:21:39.028766Z","id":"CVE-2026-3314","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-05-26T12:22:47.157Z"}}]}}