All the vulnerabilites related to Hitachi, Ltd - Hitachi Device Manager
jvndb-2024-006367
Vulnerability from jvndb
Published
2024-08-26 16:27
Modified
2024-08-26 16:27
Severity ?
Summary
Unquoted Service Path in Hitachi Device Manager
Details
Hitachi Device Manager contain the following vulnerabilities:
<a href=" https://www.cve.org/CVERecord?id=CVE-2024-5963"target="blank"> CVE-2024-5963: An unquoted executable path exists in Hitachi Device Manager (Display new window)</a>
References
| ▼ | Type | URL |
|---|---|---|
| CVE | https://www.cve.org/CVERecord?id=CVE-2024-5963 | |
| Unquoted Search Path or Element(CWE-428) | https://cwe.mitre.org/data/definitions/428.html |
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Hitachi, Ltd | Hitachi Device Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-006367.html",
"dc:date": "2024-08-26T16:27+09:00",
"dcterms:issued": "2024-08-26T16:27+09:00",
"dcterms:modified": "2024-08-26T16:27+09:00",
"description": "Hitachi Device Manager contain the following vulnerabilities:\r\n\u003ca href=\" https://www.cve.org/CVERecord?id=CVE-2024-5963\"target=\"blank\"\u003e CVE-2024-5963: An unquoted executable path exists in Hitachi Device Manager (Display new window)\u003c/a\u003e",
"link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-006367.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "6.7",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2024-006367",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-5963",
"@id": "CVE-2024-5963",
"@source": "CVE"
},
{
"#text": "https://cwe.mitre.org/data/definitions/428.html",
"@id": "CWE-428",
"@title": "Unquoted Search Path or Element(CWE-428)"
}
],
"title": "Unquoted Service Path in Hitachi Device Manager"
}
jvndb-2023-002511
Vulnerability from jvndb
Published
2023-07-19 14:48
Modified
2024-04-26 12:29
Severity ?
Summary
File and Directory Permissions Vulnerability in Hitachi Command Suite
Details
A File and Directory Permissions Vulnerability (CVE-2020-36695) exists in Hitachi Command Suite.
References
| ▼ | Type | URL |
|---|---|---|
| CVE | https://www.cve.org/CVERecord?id=CVE-2020-36695 | |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2020-36695 | |
| No Mapping(CWE-noinfo) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-002511.html",
"dc:date": "2024-04-26T12:29+09:00",
"dcterms:issued": "2023-07-19T14:48+09:00",
"dcterms:modified": "2024-04-26T12:29+09:00",
"description": "A File and Directory Permissions Vulnerability (CVE-2020-36695) exists in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-002511.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "6.6",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2023-002511",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2020-36695",
"@id": "CVE-2020-36695",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2020-36695",
"@id": "CVE-2020-36695",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "File and Directory Permissions Vulnerability in Hitachi Command Suite"
}
jvndb-2018-008547
Vulnerability from jvndb
Published
2018-10-23 13:53
Modified
2018-11-20 18:14
Severity ?
Summary
Clickjacking Vulnerability in Hitachi Device Manager
Details
A Clickjacking Vulnerability was found in Hitachi Device Manager.
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Hitachi, Ltd | Hitachi Device Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-008547.html",
"dc:date": "2018-11-20T18:14+09:00",
"dcterms:issued": "2018-10-23T13:53+09:00",
"dcterms:modified": "2018-11-20T18:14+09:00",
"description": "A Clickjacking Vulnerability was found in Hitachi Device Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-008547.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
{
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2018-008547",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Clickjacking Vulnerability in Hitachi Device Manager"
}
jvndb-2014-001203
Vulnerability from jvndb
Published
2014-01-22 18:06
Modified
2015-03-03 16:59
Summary
A Problem of CPU Consumption in Host Data Collector bundled with Hitachi Device Manager Software
Details
Host Data Collector bundled with Hitachi Device Manager Software contains a problem of CPU consumption.
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Hitachi, Ltd | Hitachi Device Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-001203.html",
"dc:date": "2015-03-03T16:59+09:00",
"dcterms:issued": "2014-01-22T18:06+09:00",
"dcterms:modified": "2015-03-03T16:59+09:00",
"description": "Host Data Collector bundled with Hitachi Device Manager Software contains a problem of CPU consumption.",
"link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-001203.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2014-001203",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "A Problem of CPU Consumption in Host Data Collector bundled with Hitachi Device Manager Software"
}
jvndb-2015-001268
Vulnerability from jvndb
Published
2015-02-16 11:12
Modified
2015-03-03 16:59
Summary
Cross-site Scripting Vulnerability in Hitachi Command Suite Products
Details
The online help of Hitachi Command Suite Products contains a cross-site scripting vulnerability.
References
| ▼ | Type | URL |
|---|---|---|
| CVE | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1565 | |
| NVD | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1565 | |
| Cross-site Scripting(CWE-79) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-001268.html",
"dc:date": "2015-03-03T16:59+09:00",
"dcterms:issued": "2015-02-16T11:12+09:00",
"dcterms:modified": "2015-03-03T16:59+09:00",
"description": "The online help of Hitachi Command Suite Products contains a cross-site scripting vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-001268.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2015-001268",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1565",
"@id": "CVE-2015-1565",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1565",
"@id": "CVE-2015-1565",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
}
],
"title": "Cross-site Scripting Vulnerability in Hitachi Command Suite Products"
}
jvndb-2019-008917
Vulnerability from jvndb
Published
2019-09-09 15:58
Modified
2019-09-09 15:58
Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-008917.html",
"dc:date": "2019-09-09T15:58+09:00",
"dcterms:issued": "2019-09-09T15:58+09:00",
"dcterms:modified": "2019-09-09T15:58+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-008917.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:configuration_manager",
"@product": "Hitachi Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-008917",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2010-001959
Vulnerability from jvndb
Published
2010-09-15 13:45
Modified
2010-09-15 13:45
Summary
Denial of Service (DoS) Vulnerability in Hitachi Storage Command Suite Built-in Database
Details
A built-in database in Hitachi Storage Command Suite (HSCS) abends upon receiving maliciously-crafted data intended to exploit its denial of service (DoS) vulnerability. As a result, HSCS may become not operational or shutdown, for example, making operations from the screen and access to the database unavailable.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001959.html",
"dc:date": "2010-09-15T13:45+09:00",
"dcterms:issued": "2010-09-15T13:45+09:00",
"dcterms:modified": "2010-09-15T13:45+09:00",
"description": "A built-in database in Hitachi Storage Command Suite (HSCS) abends upon receiving maliciously-crafted data intended to exploit its denial of service (DoS) vulnerability. As a result, HSCS may become not operational or shutdown, for example, making operations from the screen and access to the database unavailable.",
"link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001959.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_device_manager",
"@product": "JP1/HiCommand Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_global_link_availability_manager",
"@product": "JP1/HiCommand Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_provisioning_manager",
"@product": "JP1/HiCommand Provisioning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_replication_monitor",
"@product": "JP1/HiCommand Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tiered_storage_manager",
"@product": "JP1/HiCommand Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tuning_manager",
"@product": "JP1/HiCommand Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:provisioning_manager",
"@product": "Hitachi Provisioning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "7.8",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2010-001959",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
},
"title": "Denial of Service (DoS) Vulnerability in Hitachi Storage Command Suite Built-in Database"
}
jvndb-2019-011487
Vulnerability from jvndb
Published
2019-11-11 14:09
Modified
2019-11-11 14:09
Summary
DoS Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
A DoS vulnerability was found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011487.html",
"dc:date": "2019-11-11T14:09+09:00",
"dcterms:issued": "2019-11-11T14:09+09:00",
"dcterms:modified": "2019-11-11T14:09+09:00",
"description": "A DoS vulnerability was found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011487.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-011487",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "DoS Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2019-013272
Vulnerability from jvndb
Published
2019-12-24 16:02
Modified
2019-12-24 16:02
Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
We would like to thank
Piotr Madej (ING Tech Poland)
for reporting the relevant issues.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-013272.html",
"dc:date": "2019-12-24T16:02+09:00",
"dcterms:issued": "2019-12-24T16:02+09:00",
"dcterms:modified": "2019-12-24T16:02+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.\r\n\r\nWe would like to thank \r\nPiotr Madej (ING Tech Poland)\r\nfor reporting the relevant issues.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-013272.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-013272",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2018-21032",
"@id": "CVE-2018-21032",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2018-21033",
"@id": "CVE-2018-21033",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21032",
"@id": "CVE-2018-21032",
"@source": "NVD"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21033",
"@id": "CVE-2018-21033",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2023-002510
Vulnerability from jvndb
Published
2023-07-19 14:48
Modified
2023-07-19 14:48
Severity ?
Summary
Multiple Vulnerabilities in Hitachi Device Manager
Details
Multiple vulnerabilities have been found in Hitachi Device Manager.
References
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Hitachi, Ltd | Hitachi Device Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-002510.html",
"dc:date": "2023-07-19T14:48+09:00",
"dcterms:issued": "2023-07-19T14:48+09:00",
"dcterms:modified": "2023-07-19T14:48+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Device Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-002510.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "9.0",
"@severity": "Critical",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2023-002510",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-34142",
"@id": "CVE-2023-34142",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-34143",
"@id": "CVE-2023-34143",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-34142",
"@id": "CVE-2023-34142",
"@source": "NVD"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-34143",
"@id": "CVE-2023-34143",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Multiple Vulnerabilities in Hitachi Device Manager"
}
jvndb-2020-006031
Vulnerability from jvndb
Published
2020-06-29 12:25
Modified
2020-06-29 12:25
Summary
DoS Vulnerability in Hitachi Device Manager
Details
A DoS Vulnerability was found in Hitachi Device Manager.
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Hitachi, Ltd | Hitachi Device Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-006031.html",
"dc:date": "2020-06-29T12:25+09:00",
"dcterms:issued": "2020-06-29T12:25+09:00",
"dcterms:modified": "2020-06-29T12:25+09:00",
"description": "A DoS Vulnerability was found in Hitachi Device Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-006031.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:identifier": "JVNDB-2020-006031",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "DoS Vulnerability in Hitachi Device Manager"
}
jvndb-2015-006054
Vulnerability from jvndb
Published
2015-12-01 15:59
Modified
2015-12-22 17:43
Summary
XML External Entity (XXE) Vulnerability in Hitachi Command Suite
Details
XML External Entity (XXE) Vulnerability exists in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-006054.html",
"dc:date": "2015-12-22T17:43+09:00",
"dcterms:issued": "2015-12-01T15:59+09:00",
"dcterms:modified": "2015-12-22T17:43+09:00",
"description": "XML External Entity (XXE) Vulnerability exists in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-006054.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2015-006054",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "XML External Entity (XXE) Vulnerability in Hitachi Command Suite"
}
jvndb-2017-008411
Vulnerability from jvndb
Published
2017-10-18 14:22
Modified
2017-11-07 15:06
Severity ?
Summary
XXE Vulnerability in Hitachi Command Suite
Details
An XXE (XML External Entity) Vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-008411.html",
"dc:date": "2017-11-07T15:06+09:00",
"dcterms:issued": "2017-10-18T14:22+09:00",
"dcterms:modified": "2017-11-07T15:06+09:00",
"description": "An XXE (XML External Entity) Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-008411.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:dynamic_link_manager",
"@product": "Hitachi Dynamic Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "7.5",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:S/C:P/I:N/A:C",
"@version": "2.0"
},
{
"@score": "8.1",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-008411",
"sec:references": {
"#text": "https://cwe.mitre.org/data/definitions/611.html",
"@id": "CWE-611",
"@title": "Improper Restriction of XML External Entity Reference(CWE-611)"
},
"title": "XXE Vulnerability in Hitachi Command Suite"
}
jvndb-2012-005485
Vulnerability from jvndb
Published
2012-11-29 14:48
Modified
2012-11-29 14:48
Summary
Hitachi Device Manager Software Denial of Service (DoS) Vulnerability
Details
Hitachi Device Manager Software (HDvM) contains a denial of service (abend) vulnerability when receiving a large amount of data at once.
If HDvM exits abnormally, users will be able to resume using the software by restarting the HDvM service or daemon.
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Hitachi, Ltd | Hitachi Device Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-005485.html",
"dc:date": "2012-11-29T14:48+09:00",
"dcterms:issued": "2012-11-29T14:48+09:00",
"dcterms:modified": "2012-11-29T14:48+09:00",
"description": "Hitachi Device Manager Software (HDvM) contains a denial of service (abend) vulnerability when receiving a large amount of data at once.\r\n\r\nIf HDvM exits abnormally, users will be able to resume using the software by restarting the HDvM service or daemon.",
"link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-005485.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2012-005485",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Hitachi Device Manager Software Denial of Service (DoS) Vulnerability"
}
jvndb-2019-011486
Vulnerability from jvndb
Published
2019-11-11 14:10
Modified
2019-11-11 14:10
Summary
Arbitrary File Deletion Vulnerability in Hitachi Command Suite
Details
An arbitrary file deletion vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011486.html",
"dc:date": "2019-11-11T14:10+09:00",
"dcterms:issued": "2019-11-11T14:10+09:00",
"dcterms:modified": "2019-11-11T14:10+09:00",
"description": "An arbitrary file deletion vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011486.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-011486",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Arbitrary File Deletion Vulnerability in Hitachi Command Suite"
}
jvndb-2020-007127
Vulnerability from jvndb
Published
2020-08-03 16:36
Modified
2020-08-03 16:36
Summary
Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center
Details
Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-007127.html",
"dc:date": "2020-08-03T16:36+09:00",
"dcterms:issued": "2020-08-03T16:36+09:00",
"dcterms:modified": "2020-08-03T16:36+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center.",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-007127.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:configuration_manager",
"@product": "Hitachi Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:dynamic_link_manager",
"@product": "Hitachi Dynamic Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_ops_center_analyzer_viewpoint",
"@product": "Hitachi Ops Center Analyzer viewpoint",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_ops_center_api_configuration_manager",
"@product": "Hitachi Ops Center API Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_analyzer",
"@product": "Hitachi Ops Center Analyzer",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_automator",
"@product": "Hitachi Ops Center Automator",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_common_services",
"@product": "Hitachi Ops Center Common Services",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2020-007127",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center"
}
jvndb-2019-001095
Vulnerability from jvndb
Published
2019-01-22 11:47
Modified
2019-01-24 18:38
Severity ?
Summary
Cross-site Scripting Vulnerability in Hitachi Device Manager
Details
A Cross-site Scripting Vulnerability was found in Hitachi Device Manager.
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Hitachi, Ltd | Hitachi Device Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-001095.html",
"dc:date": "2019-01-24T18:38+09:00",
"dcterms:issued": "2019-01-22T11:47+09:00",
"dcterms:modified": "2019-01-24T18:38+09:00",
"description": "A Cross-site Scripting Vulnerability was found in Hitachi Device Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-001095.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "4.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:S/C:N/I:P/A:N",
"@version": "2.0"
},
{
"@score": "4.7",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2019-001095",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Device Manager"
}
jvndb-2020-010072
Vulnerability from jvndb
Published
2020-12-21 14:20
Modified
2020-12-21 14:20
Summary
Cross-site Scripting Vulnerability in Hitachi Command Suite
Details
A Cross-site Scripting vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-010072.html",
"dc:date": "2020-12-21T14:20+09:00",
"dcterms:issued": "2020-12-21T14:20+09:00",
"dcterms:modified": "2020-12-21T14:20+09:00",
"description": "A Cross-site Scripting vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-010072.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2020-010072",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Command Suite"
}
jvndb-2021-003660
Vulnerability from jvndb
Published
2021-11-01 15:56
Modified
2021-11-01 15:56
Summary
Authentication Bypass Vulnerability in Hitachi Device Manager
Details
An Authentication Bypass Vulnerability was found in Hitachi Device Manager.
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Hitachi, Ltd | Hitachi Device Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2021/JVNDB-2021-003660.html",
"dc:date": "2021-11-01T15:56+09:00",
"dcterms:issued": "2021-11-01T15:56+09:00",
"dcterms:modified": "2021-11-01T15:56+09:00",
"description": "An Authentication Bypass Vulnerability was found in Hitachi Device Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2021/JVNDB-2021-003660.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:identifier": "JVNDB-2021-003660",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Authentication Bypass Vulnerability in Hitachi Device Manager"
}
jvndb-2009-002345
Vulnerability from jvndb
Published
2009-12-24 14:32
Modified
2009-12-24 14:32
Summary
StartTLS not enabled in Hitachi Storage Command Suite products
Details
When a Hitachi Storage Command Suite product uses an LDAP directory server as the server to be used for external authentication, StartTLS won't be enabled even if it is specified as the connection protocol.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002345.html",
"dc:date": "2009-12-24T14:32+09:00",
"dcterms:issued": "2009-12-24T14:32+09:00",
"dcterms:modified": "2009-12-24T14:32+09:00",
"description": "When a Hitachi Storage Command Suite product uses an LDAP directory server as the server to be used for external authentication, StartTLS won\u0027t be enabled even if it is specified as the connection protocol.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002345.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-002345",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-16",
"@title": "Configuration(CWE-16)"
},
"title": "StartTLS not enabled in Hitachi Storage Command Suite products"
}
jvndb-2018-001389
Vulnerability from jvndb
Published
2018-02-14 14:59
Modified
2018-03-01 15:20
Severity ?
Summary
XXE Vulnerability in Hitachi Device Manager
Details
An XXE (XML External Entity) Vulnerability was found in Hitachi Device Manager.
This vulnerability only affects the Linux cluster environment.
Impacted products
| ▼ | Vendor | Product |
|---|---|---|
| Hitachi, Ltd | Hitachi Device Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-001389.html",
"dc:date": "2018-03-01T15:20+09:00",
"dcterms:issued": "2018-02-14T14:59+09:00",
"dcterms:modified": "2018-03-01T15:20+09:00",
"description": "An XXE (XML External Entity) Vulnerability was found in Hitachi Device Manager.\r\nThis vulnerability only affects the Linux cluster environment.",
"link": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-001389.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "7.8",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:N/A:C",
"@version": "2.0"
},
{
"@score": "7.4",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2018-001389",
"sec:references": {
"#text": "https://cwe.mitre.org/data/definitions/611.html",
"@id": "CWE-611",
"@title": "Improper Restriction of XML External Entity Reference(CWE-611)"
},
"title": "XXE Vulnerability in Hitachi Device Manager"
}
jvndb-2018-001388
Vulnerability from jvndb
Published
2018-02-14 14:58
Modified
2018-03-01 15:20
Severity ?
Summary
Multiple Vulnerabilities in Hitachi Command Suite
Details
Multiple vulnerabilities have been found in Hitachi Command Suite.
* Cross-site Scripting
* Open Redirect
References
| ▼ | Type | URL |
|---|---|---|
| URL Redirection to Untrusted Site ('Open Redirect')(CWE-601) | https://cwe.mitre.org/data/definitions/601.html | |
| Cross-site Scripting(CWE-79) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-001388.html",
"dc:date": "2018-03-01T15:20+09:00",
"dcterms:issued": "2018-02-14T14:58+09:00",
"dcterms:modified": "2018-03-01T15:20+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite.\r\n\r\n* Cross-site Scripting\r\n* Open Redirect",
"link": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-001388.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "5.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"@version": "2.0"
},
{
"@score": "6.1",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2018-001388",
"sec:references": [
{
"#text": "https://cwe.mitre.org/data/definitions/601.html",
"@id": "CWE-601",
"@title": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)(CWE-601)"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
}
],
"title": "Multiple Vulnerabilities in Hitachi Command Suite"
}
jvndb-2022-001382
Vulnerability from jvndb
Published
2022-03-07 15:35
Modified
2022-03-07 15:35
Summary
File Permission Vulnerability in Hitachi Command Suite
Details
A file permission vulnerability was found in HitachiHitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-001382.html",
"dc:date": "2022-03-07T15:35+09:00",
"dcterms:issued": "2022-03-07T15:35+09:00",
"dcterms:modified": "2022-03-07T15:35+09:00",
"description": "A file permission vulnerability was found in HitachiHitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-001382.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2022-001382",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "File Permission Vulnerability in Hitachi Command Suite"
}
jvndb-2019-011488
Vulnerability from jvndb
Published
2019-11-11 14:09
Modified
2019-12-02 15:46
Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
References
| ▼ | Type | URL |
|---|---|---|
| CVE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21026 | |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2018-21026 | |
| No Mapping(CWE-noinfo) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011488.html",
"dc:date": "2019-12-02T15:46+09:00",
"dcterms:issued": "2019-11-11T14:09+09:00",
"dcterms:modified": "2019-12-02T15:46+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011488.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-011488",
"sec:references": [
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21026",
"@id": "CVE-2018-21026",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21026",
"@id": "CVE-2018-21026",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}
jvndb-2019-001094
Vulnerability from jvndb
Published
2019-01-22 11:47
Modified
2019-01-24 18:39
Severity ?
Summary
Information Disclosure Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-001094.html",
"dc:date": "2019-01-24T18:39+09:00",
"dcterms:issued": "2019-01-22T11:47+09:00",
"dcterms:modified": "2019-01-24T18:39+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-001094.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:configuration_manager",
"@product": "Hitachi Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "5.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2019-001094",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Information Disclosure Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2016-002715
Vulnerability from jvndb
Published
2016-05-24 16:43
Modified
2016-08-03 16:09
Severity ?
Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002715.html",
"dc:date": "2016-08-03T16:09+09:00",
"dcterms:issued": "2016-05-24T16:43+09:00",
"dcterms:modified": "2016-08-03T16:09+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002715.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_availability_manager",
"@product": "Hitachi Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_replication_monitor",
"@product": "Hitachi Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_device_manager",
"@product": "JP1/HiCommand Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_global_link_availability_manager",
"@product": "JP1/HiCommand Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_replication_monitor",
"@product": "JP1/HiCommand Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tiered_storage_manager",
"@product": "JP1/HiCommand Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "3.5",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:S/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "3.1",
"@severity": "Low",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2016-002715",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}
jvndb-2018-006236
Vulnerability from jvndb
Published
2018-08-14 10:04
Modified
2019-07-24 17:02
Severity ?
Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
References
| ▼ | Type | URL |
|---|---|---|
| CVE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14735 | |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2018-14735 | |
| No Mapping(CWE-noinfo) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-006236.html",
"dc:date": "2019-07-24T17:02+09:00",
"dcterms:issued": "2018-08-14T10:04+09:00",
"dcterms:modified": "2019-07-24T17:02+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-006236.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "4.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2018-006236",
"sec:references": [
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14735",
"@id": "CVE-2018-14735",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-14735",
"@id": "CVE-2018-14735",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}
jvndb-2009-001931
Vulnerability from jvndb
Published
2009-08-31 15:52
Modified
2009-08-31 15:52
Summary
Issue of Access Control Failure in Hitachi Device Manager Server
Details
Hitachi Device Manager servers contain a vulnerability in which access
control settings would be rendered invalid in the following cases:
- IPv6 format is used for communications between a Hitachi Device
Manager server and its clients.
- Access controls for Hitachi Device Manager clients are set by the
range of IP addresses written in the CIDR format.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-001931.html",
"dc:date": "2009-08-31T15:52+09:00",
"dcterms:issued": "2009-08-31T15:52+09:00",
"dcterms:modified": "2009-08-31T15:52+09:00",
"description": "Hitachi Device Manager servers contain a vulnerability in which access\r\ncontrol settings would be rendered invalid in the following cases:\r\n\r\n- IPv6 format is used for communications between a Hitachi Device\r\nManager server and its clients.\r\n- Access controls for Hitachi Device Manager clients are set by the\r\nrange of IP addresses written in the CIDR format.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-001931.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_device_manager",
"@product": "JP1/HiCommand Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "6.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-001931",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-264",
"@title": "Permissions(CWE-264)"
},
"title": "Issue of Access Control Failure in Hitachi Device Manager Server"
}
jvndb-2016-003527
Vulnerability from jvndb
Published
2016-08-02 13:50
Modified
2016-09-14 18:18
Severity ?
Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-003527.html",
"dc:date": "2016-09-14T18:18+09:00",
"dcterms:issued": "2016-08-02T13:50+09:00",
"dcterms:modified": "2016-09-14T18:18+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-003527.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "3.5",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:S/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "3.1",
"@severity": "Low",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2016-003527",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}
jvndb-2019-003194
Vulnerability from jvndb
Published
2019-05-13 15:25
Modified
2019-05-13 15:25
Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-003194.html",
"dc:date": "2019-05-13T15:25+09:00",
"dcterms:issued": "2019-05-13T15:25+09:00",
"dcterms:modified": "2019-05-13T15:25+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-003194.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-003194",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2016-001472
Vulnerability from jvndb
Published
2016-02-25 16:09
Modified
2016-09-14 18:18
Severity ?
Summary
Remote File Inclusion Vulnerability in Hitachi Command Suite
Details
A Remote File Inclusion Vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-001472.html",
"dc:date": "2016-09-14T18:18+09:00",
"dcterms:issued": "2016-02-25T16:09+09:00",
"dcterms:modified": "2016-09-14T18:18+09:00",
"description": "A Remote File Inclusion Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-001472.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "2.6",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
{
"@score": "3.4",
"@severity": "Low",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2016-001472",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Remote File Inclusion Vulnerability in Hitachi Command Suite"
}
jvndb-2013-003074
Vulnerability from jvndb
Published
2013-06-20 14:37
Modified
2013-06-20 14:37
Summary
Cross-site Scripting Vulnerability in Hitachi Command Suite Products
Details
Hitachi Command Suite Products contains a cross-site scripting vulnerability.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-003074.html",
"dc:date": "2013-06-20T14:37+09:00",
"dcterms:issued": "2013-06-20T14:37+09:00",
"dcterms:modified": "2013-06-20T14:37+09:00",
"description": "Hitachi Command Suite Products contains a cross-site scripting vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-003074.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2013-003074",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Command Suite Products"
}