{"api_version":"1","generated_at":"2026-06-03T02:57:24+00:00","cve":"CVE-2026-3314","urls":{"html":"https://cve.report/CVE-2026-3314","api":"https://cve.report/api/cve/CVE-2026-3314.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-3314","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-3314"},"summary":{"title":"Missing Password Masking in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer and Hitachi Ops Center Analyzer viewpoint","description":"Missing password field masking vulnerability in Hitachi Ops Center Analyzer (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe modules), Hitachi Ops Center Analyzer viewpoint, Hitachi Infrastructure Analytics Advisor (Data Center Analytics, Analytics probe modules).\n\nThis issue affects Hitachi Ops Center Analyzer: from 10.0.0-00 before 11.0.8-00; Hitachi Ops Center Analyzer viewpoint: from 10.8.1-00 before 11.0.8-00; Hitachi Infrastructure Analytics Advisor: from 3.2.0-00 before 11.0.8-00.","state":"PUBLISHED","assigner":"Hitachi","published_at":"2026-05-26 07:16:18","updated_at":"2026-05-26 20:03:50"},"problem_types":["CWE-549","CWE-549 CWE-549 Missing password field masking"],"metrics":[{"version":"3.1","source":"hirt@hitachi.co.jp","type":"Secondary","score":"4.6","severity":"MEDIUM","vector":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":4.6,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"}},{"version":"3.1","source":"CNA","type":"CVSS","score":"4.6","severity":"MEDIUM","vector":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","data":{"attackComplexity":"LOW","attackVector":"PHYSICAL","availabilityImpact":"NONE","baseScore":4.6,"baseSeverity":"MEDIUM","confidentialityImpact":"HIGH","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","version":"3.1"}}],"references":[{"url":"https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2026-120/index.html","name":"https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2026-120/index.html","refsource":"hirt@hitachi.co.jp","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-3314","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-3314","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"Hitachi","product":"Hitachi Ops Center Analyzer","version":"affected 10.0.0-00 11.0.8-00 custom","platforms":["Linux","64 bit"]},{"source":"CNA","vendor":"Hitachi","product":"Hitachi Ops Center Analyzer viewpoint","version":"affected 10.8.1-00 11.0.8-00 custom","platforms":["Linux","64 bit"]},{"source":"CNA","vendor":"Hitachi","product":"Hitachi Infrastructure Analytics Advisor","version":"affected 3.2.0-00 11.0.8-00 custom","platforms":["Linux","64 bit"]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2026","cve_id":"3314","cve":"CVE-2026-3314","epss":"0.000160000","percentile":"0.038700000","score_date":"2026-05-31","updated_at":"2026-06-01 00:08:20"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"metrics":[{"other":{"content":{"id":"CVE-2026-3314","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","timestamp":"2026-05-26T12:21:39.028766Z","version":"2.0.3"},"type":"ssvc"}}],"providerMetadata":{"dateUpdated":"2026-05-26T12:22:47.157Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"defaultStatus":"unaffected","modules":["Hitachi Ops Center Analyzer detail view","Hitachi Ops Center Analyzer probe"],"platforms":["Linux","64 bit"],"product":"Hitachi Ops Center Analyzer","vendor":"Hitachi","versions":[{"changes":[{"at":"11.0.8-00","status":"unaffected"}],"lessThan":"11.0.8-00","status":"affected","version":"10.0.0-00","versionType":"custom"}]},{"defaultStatus":"unaffected","platforms":["Linux","64 bit"],"product":"Hitachi Ops Center Analyzer viewpoint","vendor":"Hitachi","versions":[{"changes":[{"at":"11.0.8-00","status":"unaffected"}],"lessThan":"11.0.8-00","status":"affected","version":"10.8.1-00","versionType":"custom"}]},{"defaultStatus":"unaffected","modules":["Data Center Analytics","Analytics probe"],"platforms":["Linux","64 bit"],"product":"Hitachi Infrastructure Analytics Advisor","vendor":"Hitachi","versions":[{"lessThan":"11.0.8-00","status":"affected","version":"3.2.0-00","versionType":"custom"}]}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"Missing password field masking vulnerability in Hitachi Ops Center Analyzer (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe modules), Hitachi Ops Center Analyzer viewpoint, Hitachi Infrastructure Analytics Advisor (Data Center Analytics, Analytics probe modules).<p>This issue affects Hitachi Ops Center Analyzer: from 10.0.0-00 before 11.0.8-00; Hitachi Ops Center Analyzer viewpoint: from 10.8.1-00 before 11.0.8-00; Hitachi Infrastructure Analytics Advisor: from 3.2.0-00 before 11.0.8-00.</p>"}],"value":"Missing password field masking vulnerability in Hitachi Ops Center Analyzer (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe modules), Hitachi Ops Center Analyzer viewpoint, Hitachi Infrastructure Analytics Advisor (Data Center Analytics, Analytics probe modules).\n\nThis issue affects Hitachi Ops Center Analyzer: from 10.0.0-00 before 11.0.8-00; Hitachi Ops Center Analyzer viewpoint: from 10.8.1-00 before 11.0.8-00; Hitachi Infrastructure Analytics Advisor: from 3.2.0-00 before 11.0.8-00."}],"impacts":[{"capecId":"CAPEC-555","descriptions":[{"lang":"en","value":"CAPEC-555 Remote Services with Stolen Credentials"}]}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"PHYSICAL","availabilityImpact":"NONE","baseScore":4.6,"baseSeverity":"MEDIUM","confidentialityImpact":"HIGH","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-549","description":"CWE-549 Missing password field masking","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-05-26T05:57:09.752Z","orgId":"50d0f415-c707-4733-9afc-8f6c0e9b3f82","shortName":"Hitachi"},"references":[{"tags":["vendor-advisory"],"url":"https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2026-120/index.html"}],"source":{"advisory":"hitachi-sec-2026-120","discovery":"UNKNOWN"},"title":"Missing Password Masking in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer and Hitachi Ops Center Analyzer viewpoint","x_generator":{"engine":"Vulnogram 1.0.2"}}},"cveMetadata":{"assignerOrgId":"50d0f415-c707-4733-9afc-8f6c0e9b3f82","assignerShortName":"Hitachi","cveId":"CVE-2026-3314","datePublished":"2026-05-26T05:57:09.752Z","dateReserved":"2026-02-27T06:34:14.106Z","dateUpdated":"2026-05-26T12:22:47.157Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-05-26 07:16:18","lastModifiedDate":"2026-05-26 20:03:50","problem_types":["CWE-549","CWE-549 CWE-549 Missing password field masking"],"metrics":{"cvssMetricV31":[{"source":"hirt@hitachi.co.jp","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":4.6,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.9,"impactScore":3.6}]},"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"3314","Ordinal":"1","Title":"Missing Password Masking in Hitachi Infrastructure Analytics Adv","CVE":"CVE-2026-3314","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"3314","Ordinal":"1","NoteData":"Missing password field masking vulnerability in Hitachi Ops Center Analyzer (Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe modules), Hitachi Ops Center Analyzer viewpoint, Hitachi Infrastructure Analytics Advisor (Data Center Analytics, Analytics probe modules).\n\nThis issue affects Hitachi Ops Center Analyzer: from 10.0.0-00 before 11.0.8-00; Hitachi Ops Center Analyzer viewpoint: from 10.8.1-00 before 11.0.8-00; Hitachi Infrastructure Analytics Advisor: from 3.2.0-00 before 11.0.8-00.","Type":"Description","Title":"Missing Password Masking in Hitachi Infrastructure Analytics Adv"}]}}}