All the vulnerabilites related to Hitachi, Ltd - Hitachi Global Link Manager
jvndb-2019-008917
Vulnerability from jvndb
Published
2019-09-09 15:58
Modified
2019-09-09 15:58
Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-008917.html",
"dc:date": "2019-09-09T15:58+09:00",
"dcterms:issued": "2019-09-09T15:58+09:00",
"dcterms:modified": "2019-09-09T15:58+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-008917.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:configuration_manager",
"@product": "Hitachi Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-008917",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2019-003194
Vulnerability from jvndb
Published
2019-05-13 15:25
Modified
2019-05-13 15:25
Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-003194.html",
"dc:date": "2019-05-13T15:25+09:00",
"dcterms:issued": "2019-05-13T15:25+09:00",
"dcterms:modified": "2019-05-13T15:25+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-003194.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-003194",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2019-010375
Vulnerability from jvndb
Published
2019-10-18 14:21
Modified
2019-10-18 14:21
Summary
Multiple Vulnerabilities in Hitachi Global Link Manager
Details
Multiple vulnerabilities have been found in Hitachi Global Link Manager.
* Cross-site Scripting
* DoS
Impacted products
| Vendor | Product |
|---|---|
| Hitachi, Ltd | Hitachi Global Link Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-010375.html",
"dc:date": "2019-10-18T14:21+09:00",
"dcterms:issued": "2019-10-18T14:21+09:00",
"dcterms:modified": "2019-10-18T14:21+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Global Link Manager. \r\n\r\n* Cross-site Scripting\r\n* DoS",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-010375.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:identifier": "JVNDB-2019-010375",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Global Link Manager"
}
jvndb-2020-007127
Vulnerability from jvndb
Published
2020-08-03 16:36
Modified
2020-08-03 16:36
Summary
Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center
Details
Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-007127.html",
"dc:date": "2020-08-03T16:36+09:00",
"dcterms:issued": "2020-08-03T16:36+09:00",
"dcterms:modified": "2020-08-03T16:36+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center.",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-007127.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:configuration_manager",
"@product": "Hitachi Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:dynamic_link_manager",
"@product": "Hitachi Dynamic Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_ops_center_analyzer_viewpoint",
"@product": "Hitachi Ops Center Analyzer viewpoint",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_ops_center_api_configuration_manager",
"@product": "Hitachi Ops Center API Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_analyzer",
"@product": "Hitachi Ops Center Analyzer",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_automator",
"@product": "Hitachi Ops Center Automator",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_common_services",
"@product": "Hitachi Ops Center Common Services",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2020-007127",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center"
}
jvndb-2019-013272
Vulnerability from jvndb
Published
2019-12-24 16:02
Modified
2019-12-24 16:02
Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
We would like to thank
Piotr Madej (ING Tech Poland)
for reporting the relevant issues.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-013272.html",
"dc:date": "2019-12-24T16:02+09:00",
"dcterms:issued": "2019-12-24T16:02+09:00",
"dcterms:modified": "2019-12-24T16:02+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.\r\n\r\nWe would like to thank \r\nPiotr Madej (ING Tech Poland)\r\nfor reporting the relevant issues.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-013272.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-013272",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2018-21032",
"@id": "CVE-2018-21032",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2018-21033",
"@id": "CVE-2018-21033",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21032",
"@id": "CVE-2018-21032",
"@source": "NVD"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21033",
"@id": "CVE-2018-21033",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2009-002345
Vulnerability from jvndb
Published
2009-12-24 14:32
Modified
2009-12-24 14:32
Summary
StartTLS not enabled in Hitachi Storage Command Suite products
Details
When a Hitachi Storage Command Suite product uses an LDAP directory server as the server to be used for external authentication, StartTLS won't be enabled even if it is specified as the connection protocol.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002345.html",
"dc:date": "2009-12-24T14:32+09:00",
"dcterms:issued": "2009-12-24T14:32+09:00",
"dcterms:modified": "2009-12-24T14:32+09:00",
"description": "When a Hitachi Storage Command Suite product uses an LDAP directory server as the server to be used for external authentication, StartTLS won\u0027t be enabled even if it is specified as the connection protocol.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002345.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-002345",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-16",
"@title": "Configuration(CWE-16)"
},
"title": "StartTLS not enabled in Hitachi Storage Command Suite products"
}
jvndb-2017-008363
Vulnerability from jvndb
Published
2017-10-17 16:26
Modified
2017-10-18 12:31
Severity
Summary
Information Disclosure Vulnerability in Hitachi Global Link Manager
Details
An Information Disclosure Vulnerability was found in Hitachi Global Link Manager.
Impacted products
| Vendor | Product |
|---|---|
| Hitachi, Ltd | Hitachi Global Link Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-008363.html",
"dc:date": "2017-10-18T12:31+09:00",
"dcterms:issued": "2017-10-17T16:26+09:00",
"dcterms:modified": "2017-10-18T12:31+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Global Link Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-008363.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "3.5",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:S/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "3.1",
"@severity": "Low",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-008363",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Information Disclosure Vulnerability in Hitachi Global Link Manager"
}
jvndb-2020-010072
Vulnerability from jvndb
Published
2020-12-21 14:20
Modified
2020-12-21 14:20
Summary
Cross-site Scripting Vulnerability in Hitachi Command Suite
Details
A Cross-site Scripting vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-010072.html",
"dc:date": "2020-12-21T14:20+09:00",
"dcterms:issued": "2020-12-21T14:20+09:00",
"dcterms:modified": "2020-12-21T14:20+09:00",
"description": "A Cross-site Scripting vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-010072.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2020-010072",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Command Suite"
}
jvndb-2024-002832
Vulnerability from jvndb
Published
2024-02-21 15:53
Modified
2024-02-21 15:53
Severity
Summary
EL Injection Vulnerability in Hitachi Global Link Manager
Details
An EL Injection Vulnerability (CVE-2024-0715) exists in Hitachi Global Link Manager.
Affected products and versions are listed below. Please upgrade your version to the appropriate version.
References
| Type | URL |
|---|---|
| CVE | https://www.cve.org/CVERecord?id=CVE-2024-0715 |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2024-0715 |
| Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')(CWE-917) | https://cwe.mitre.org/data/definitions/917.html |
Impacted products
| Vendor | Product |
|---|---|
| Hitachi, Ltd | Hitachi Global Link Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-002832.html",
"dc:date": "2024-02-21T15:53+09:00",
"dcterms:issued": "2024-02-21T15:53+09:00",
"dcterms:modified": "2024-02-21T15:53+09:00",
"description": "An EL Injection Vulnerability (CVE-2024-0715) exists in Hitachi Global Link Manager.\r\n\r\nAffected products and versions are listed below. Please upgrade your version to the appropriate version.",
"link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-002832.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "7.6",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2024-002832",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-0715",
"@id": "CVE-2024-0715",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2024-0715",
"@id": "CVE-2024-0715",
"@source": "NVD"
},
{
"#text": "https://cwe.mitre.org/data/definitions/917.html",
"@id": "CWE-917",
"@title": "Improper Neutralization of Special Elements used in an Expression Language Statement (\u0027Expression Language Injection\u0027)(CWE-917)"
}
],
"title": "EL Injection Vulnerability in Hitachi Global Link Manager"
}
jvndb-2010-001959
Vulnerability from jvndb
Published
2010-09-15 13:45
Modified
2010-09-15 13:45
Summary
Denial of Service (DoS) Vulnerability in Hitachi Storage Command Suite Built-in Database
Details
A built-in database in Hitachi Storage Command Suite (HSCS) abends upon receiving maliciously-crafted data intended to exploit its denial of service (DoS) vulnerability. As a result, HSCS may become not operational or shutdown, for example, making operations from the screen and access to the database unavailable.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001959.html",
"dc:date": "2010-09-15T13:45+09:00",
"dcterms:issued": "2010-09-15T13:45+09:00",
"dcterms:modified": "2010-09-15T13:45+09:00",
"description": "A built-in database in Hitachi Storage Command Suite (HSCS) abends upon receiving maliciously-crafted data intended to exploit its denial of service (DoS) vulnerability. As a result, HSCS may become not operational or shutdown, for example, making operations from the screen and access to the database unavailable.",
"link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001959.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_device_manager",
"@product": "JP1/HiCommand Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_global_link_availability_manager",
"@product": "JP1/HiCommand Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_provisioning_manager",
"@product": "JP1/HiCommand Provisioning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_replication_monitor",
"@product": "JP1/HiCommand Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tiered_storage_manager",
"@product": "JP1/HiCommand Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tuning_manager",
"@product": "JP1/HiCommand Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:provisioning_manager",
"@product": "Hitachi Provisioning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "7.8",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2010-001959",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
},
"title": "Denial of Service (DoS) Vulnerability in Hitachi Storage Command Suite Built-in Database"
}
jvndb-2015-001268
Vulnerability from jvndb
Published
2015-02-16 11:12
Modified
2015-03-03 16:59
Summary
Cross-site Scripting Vulnerability in Hitachi Command Suite Products
Details
The online help of Hitachi Command Suite Products contains a cross-site scripting vulnerability.
References
| Type | URL |
|---|---|
| CVE | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1565 |
| NVD | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1565 |
| Cross-site Scripting(CWE-79) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-001268.html",
"dc:date": "2015-03-03T16:59+09:00",
"dcterms:issued": "2015-02-16T11:12+09:00",
"dcterms:modified": "2015-03-03T16:59+09:00",
"description": "The online help of Hitachi Command Suite Products contains a cross-site scripting vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-001268.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2015-001268",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1565",
"@id": "CVE-2015-1565",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1565",
"@id": "CVE-2015-1565",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
}
],
"title": "Cross-site Scripting Vulnerability in Hitachi Command Suite Products"
}