All the vulnerabilites related to Hitachi, Ltd - Hitachi Tuning Manager
jvndb-2019-003194
Vulnerability from jvndb
Published
2019-05-13 15:25
Modified
2019-05-13 15:25
Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-003194.html",
"dc:date": "2019-05-13T15:25+09:00",
"dcterms:issued": "2019-05-13T15:25+09:00",
"dcterms:modified": "2019-05-13T15:25+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-003194.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-003194",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2023-001008
Vulnerability from jvndb
Published
2023-01-18 13:51
Modified
2023-01-18 13:51
Severity
Summary
File and Directory Permissions Vulnerability in Hitachi Tuning Manager
Details
A File and Directory Permissions Vulnerability (CVE-2020-36611) exists in Hitachi Tuning Manager.
References
| Type | URL |
|---|---|
| CVE | https://www.cve.org/CVERecord?id=CVE-2020-36611 |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2020-36611 |
| No Mapping(CWE-noinfo) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
| Vendor | Product |
|---|---|
| Hitachi, Ltd | Hitachi Tuning Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-001008.html",
"dc:date": "2023-01-18T13:51+09:00",
"dcterms:issued": "2023-01-18T13:51+09:00",
"dcterms:modified": "2023-01-18T13:51+09:00",
"description": "A File and Directory Permissions Vulnerability (CVE-2020-36611) exists in Hitachi Tuning Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-001008.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "6.6",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2023-001008",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2020-36611",
"@id": "CVE-2020-36611",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2020-36611",
"@id": "CVE-2020-36611",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "File and Directory Permissions Vulnerability in Hitachi Tuning Manager"
}
jvndb-2013-001605
Vulnerability from jvndb
Published
2013-02-22 20:09
Modified
2013-02-22 20:09
Summary
Multiple vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management
Details
Hitachi Tuning Manager, JP1/Performance Management - Web Console, and JP1/Performance Management - Manager Web Option contain Cross-site scripting and cross-site request forgery (CSRF) vulnerabilities.
These vulnerabilities can not be exploited, unless logging in these products.
References
| Type | URL |
|---|---|
| Cross-Site Request Forgery(CWE-352) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
| Cross-site Scripting(CWE-79) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-001605.html",
"dc:date": "2013-02-22T20:09+09:00",
"dcterms:issued": "2013-02-22T20:09+09:00",
"dcterms:modified": "2013-02-22T20:09+09:00",
"description": "Hitachi Tuning Manager, JP1/Performance Management - Web Console, and JP1/Performance Management - Manager Web Option contain Cross-site scripting and cross-site request forgery (CSRF) vulnerabilities.\r\n\r\nThese vulnerabilities can not be exploited, unless logging in these products.",
"link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-001605.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:job_management_partner_1_performance_management_web_console",
"@product": "Job Management Partner 1/Performance Management - Web Console",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1%2fperformance_management",
"@product": "JP1/Performance Management",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "9.0",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2013-001605",
"sec:references": [
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-352",
"@title": "Cross-Site Request Forgery(CWE-352)"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
}
],
"title": "Multiple vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management"
}
jvndb-2024-001462
Vulnerability from jvndb
Published
2024-02-05 14:54
Modified
2024-02-05 14:54
Severity
Summary
File and Directory Permissions Vulnerability in Hitachi Tuning Manager
Details
A File and Directory Permissions Vulnerability (CVE-2023-6457) exists in Hitachi Tuning Manager.
References
| Type | URL |
|---|---|
| CVE | https://www.cve.org/CVERecord?id=CVE-2023-6457 |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2023-6457 |
| Incorrect Default Permissions(CWE-276) | https://cwe.mitre.org/data/definitions/276.html |
Impacted products
| Vendor | Product |
|---|---|
| Hitachi, Ltd | Hitachi Tuning Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-001462.html",
"dc:date": "2024-02-05T14:54+09:00",
"dcterms:issued": "2024-02-05T14:54+09:00",
"dcterms:modified": "2024-02-05T14:54+09:00",
"description": "A File and Directory Permissions Vulnerability (CVE-2023-6457) exists in Hitachi Tuning Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-001462.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "6.6",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2024-001462",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-6457",
"@id": "CVE-2023-6457",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-6457",
"@id": "CVE-2023-6457",
"@source": "NVD"
},
{
"#text": "https://cwe.mitre.org/data/definitions/276.html",
"@id": "CWE-276",
"@title": "Incorrect Default Permissions(CWE-276)"
}
],
"title": "File and Directory Permissions Vulnerability in Hitachi Tuning Manager"
}
jvndb-2017-008364
Vulnerability from jvndb
Published
2017-10-17 16:26
Modified
2017-10-18 12:31
Severity
Summary
RMI Vulnerability in Hitachi Tuning Manager
Details
A RMI Vulnerability was found in Hitachi Tuning Manager.
Impacted products
| Vendor | Product |
|---|---|
| Hitachi, Ltd | Hitachi Tuning Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-008364.html",
"dc:date": "2017-10-18T12:31+09:00",
"dcterms:issued": "2017-10-17T16:26+09:00",
"dcterms:modified": "2017-10-18T12:31+09:00",
"description": "A RMI Vulnerability was found in Hitachi Tuning Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-008364.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "10.0",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"@version": "2.0"
},
{
"@score": "9.8",
"@severity": "Critical",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-008364",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "RMI Vulnerability in Hitachi Tuning Manager"
}
jvndb-2021-002810
Vulnerability from jvndb
Published
2021-10-05 15:37
Modified
2021-10-05 15:37
Summary
Information Disclosure Vulnerability in Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer
Details
Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer contains information disclosure vulnerability.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2021/JVNDB-2021-002810.html",
"dc:date": "2021-10-05T15:37+09:00",
"dcterms:issued": "2021-10-05T15:37+09:00",
"dcterms:modified": "2021-10-05T15:37+09:00",
"description": "Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer contains information disclosure vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2021/JVNDB-2021-002810.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_analyzer",
"@product": "Hitachi Ops Center Analyzer",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2021-002810",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Information Disclosure Vulnerability in Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer"
}
jvndb-2023-002511
Vulnerability from jvndb
Published
2023-07-19 14:48
Modified
2024-04-26 12:29
Severity
Summary
File and Directory Permissions Vulnerability in Hitachi Command Suite
Details
A File and Directory Permissions Vulnerability (CVE-2020-36695) exists in Hitachi Command Suite.
References
| Type | URL |
|---|---|
| CVE | https://www.cve.org/CVERecord?id=CVE-2020-36695 |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2020-36695 |
| No Mapping(CWE-noinfo) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-002511.html",
"dc:date": "2024-04-26T12:29+09:00",
"dcterms:issued": "2023-07-19T14:48+09:00",
"dcterms:modified": "2024-04-26T12:29+09:00",
"description": "A File and Directory Permissions Vulnerability (CVE-2020-36695) exists in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-002511.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "6.6",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2023-002511",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2020-36695",
"@id": "CVE-2020-36695",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2020-36695",
"@id": "CVE-2020-36695",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "File and Directory Permissions Vulnerability in Hitachi Command Suite"
}
jvndb-2011-001156
Vulnerability from jvndb
Published
2011-04-01 15:52
Modified
2011-04-01 15:52
Summary
Hitachi Tuning Manager Software Cross-Site Scripting Vulnerability
Details
Hitachi Tuning Manager Software contains a cross-site scripting vulnerability.
Impacted products
| Vendor | Product |
|---|---|
| Hitachi, Ltd | Hitachi Tuning Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-001156.html",
"dc:date": "2011-04-01T15:52+09:00",
"dcterms:issued": "2011-04-01T15:52+09:00",
"dcterms:modified": "2011-04-01T15:52+09:00",
"description": "Hitachi Tuning Manager Software contains a cross-site scripting vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-001156.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2011-001156",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
},
"title": "Hitachi Tuning Manager Software Cross-Site Scripting Vulnerability"
}
jvndb-2020-010072
Vulnerability from jvndb
Published
2020-12-21 14:20
Modified
2020-12-21 14:20
Summary
Cross-site Scripting Vulnerability in Hitachi Command Suite
Details
A Cross-site Scripting vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-010072.html",
"dc:date": "2020-12-21T14:20+09:00",
"dcterms:issued": "2020-12-21T14:20+09:00",
"dcterms:modified": "2020-12-21T14:20+09:00",
"description": "A Cross-site Scripting vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-010072.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2020-010072",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Command Suite"
}
jvndb-2019-013272
Vulnerability from jvndb
Published
2019-12-24 16:02
Modified
2019-12-24 16:02
Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
We would like to thank
Piotr Madej (ING Tech Poland)
for reporting the relevant issues.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-013272.html",
"dc:date": "2019-12-24T16:02+09:00",
"dcterms:issued": "2019-12-24T16:02+09:00",
"dcterms:modified": "2019-12-24T16:02+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.\r\n\r\nWe would like to thank \r\nPiotr Madej (ING Tech Poland)\r\nfor reporting the relevant issues.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-013272.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-013272",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2018-21032",
"@id": "CVE-2018-21032",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2018-21033",
"@id": "CVE-2018-21033",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21032",
"@id": "CVE-2018-21032",
"@source": "NVD"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21033",
"@id": "CVE-2018-21033",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2023-003771
Vulnerability from jvndb
Published
2023-10-04 15:23
Modified
2023-10-04 15:23
Severity
Summary
File and Directory Permissions Vulnerability in JP1/Performance Management
Details
A File and Directory Permissions Vulnerability (CVE-2023-3440) exists in JP1/Performance Management.
References
| Type | URL |
|---|---|
| CVE | https://www.cve.org/CVERecord?id=CVE-2023-3440 |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2023-3440 |
| No Mapping(CWE-noinfo) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-003771.html",
"dc:date": "2023-10-04T15:23+09:00",
"dcterms:issued": "2023-10-04T15:23+09:00",
"dcterms:modified": "2023-10-04T15:23+09:00",
"description": "A File and Directory Permissions Vulnerability (CVE-2023-3440) exists in JP1/Performance Management.",
"link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-003771.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:jp1%2fperformance_management",
"@product": "JP1/Performance Management",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "8.4",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2023-003771",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-3440",
"@id": "CVE-2023-3440",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-3440",
"@id": "CVE-2023-3440",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "File and Directory Permissions Vulnerability in JP1/Performance Management"
}
jvndb-2013-003074
Vulnerability from jvndb
Published
2013-06-20 14:37
Modified
2013-06-20 14:37
Summary
Cross-site Scripting Vulnerability in Hitachi Command Suite Products
Details
Hitachi Command Suite Products contains a cross-site scripting vulnerability.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-003074.html",
"dc:date": "2013-06-20T14:37+09:00",
"dcterms:issued": "2013-06-20T14:37+09:00",
"dcterms:modified": "2013-06-20T14:37+09:00",
"description": "Hitachi Command Suite Products contains a cross-site scripting vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-003074.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2013-003074",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Command Suite Products"
}
jvndb-2019-011488
Vulnerability from jvndb
Published
2019-11-11 14:09
Modified
2019-12-02 15:46
Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011488.html",
"dc:date": "2019-12-02T15:46+09:00",
"dcterms:issued": "2019-11-11T14:09+09:00",
"dcterms:modified": "2019-12-02T15:46+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011488.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-011488",
"sec:references": [
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21026",
"@id": "CVE-2018-21026",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21026",
"@id": "CVE-2018-21026",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}
jvndb-2019-011487
Vulnerability from jvndb
Published
2019-11-11 14:09
Modified
2019-11-11 14:09
Summary
DoS Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
A DoS vulnerability was found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011487.html",
"dc:date": "2019-11-11T14:09+09:00",
"dcterms:issued": "2019-11-11T14:09+09:00",
"dcterms:modified": "2019-11-11T14:09+09:00",
"description": "A DoS vulnerability was found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011487.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-011487",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "DoS Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2010-001959
Vulnerability from jvndb
Published
2010-09-15 13:45
Modified
2010-09-15 13:45
Summary
Denial of Service (DoS) Vulnerability in Hitachi Storage Command Suite Built-in Database
Details
A built-in database in Hitachi Storage Command Suite (HSCS) abends upon receiving maliciously-crafted data intended to exploit its denial of service (DoS) vulnerability. As a result, HSCS may become not operational or shutdown, for example, making operations from the screen and access to the database unavailable.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001959.html",
"dc:date": "2010-09-15T13:45+09:00",
"dcterms:issued": "2010-09-15T13:45+09:00",
"dcterms:modified": "2010-09-15T13:45+09:00",
"description": "A built-in database in Hitachi Storage Command Suite (HSCS) abends upon receiving maliciously-crafted data intended to exploit its denial of service (DoS) vulnerability. As a result, HSCS may become not operational or shutdown, for example, making operations from the screen and access to the database unavailable.",
"link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001959.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_device_manager",
"@product": "JP1/HiCommand Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_global_link_availability_manager",
"@product": "JP1/HiCommand Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_provisioning_manager",
"@product": "JP1/HiCommand Provisioning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_replication_monitor",
"@product": "JP1/HiCommand Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tiered_storage_manager",
"@product": "JP1/HiCommand Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tuning_manager",
"@product": "JP1/HiCommand Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:provisioning_manager",
"@product": "Hitachi Provisioning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "7.8",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2010-001959",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
},
"title": "Denial of Service (DoS) Vulnerability in Hitachi Storage Command Suite Built-in Database"
}
jvndb-2014-002800
Vulnerability from jvndb
Published
2014-06-12 11:43
Modified
2015-03-03 16:59
Summary
Multiple Vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management - Manager Web Option
Details
Hitachi Tuning Manager and JP1/Performance Management - Manager Web Option contains cross-site scripting and cross-site request forgery (CSRF) vulnerabilities.
These vulnerabilities can not be exploited, unless logging in these products.
References
| Type | URL |
|---|---|
| CVE | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4188 |
| CVE | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4189 |
| NVD | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4188 |
| NVD | http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4189 |
| Cross-Site Request Forgery(CWE-352) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
| Cross-site Scripting(CWE-79) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-002800.html",
"dc:date": "2015-03-03T16:59+09:00",
"dcterms:issued": "2014-06-12T11:43+09:00",
"dcterms:modified": "2015-03-03T16:59+09:00",
"description": "Hitachi Tuning Manager and JP1/Performance Management - Manager Web Option contains cross-site scripting and cross-site request forgery (CSRF) vulnerabilities.\r\n\r\nThese vulnerabilities can not be exploited, unless logging in these products.",
"link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-002800.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:jp1%2fperformance_management",
"@product": "JP1/Performance Management",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "3.5",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2014-002800",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4188",
"@id": "CVE-2014-4188",
"@source": "CVE"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4189",
"@id": "CVE-2014-4189",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4188",
"@id": "CVE-2014-4188",
"@source": "NVD"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4189",
"@id": "CVE-2014-4189",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-352",
"@title": "Cross-Site Request Forgery(CWE-352)"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
}
],
"title": "Multiple Vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management - Manager Web Option"
}
jvndb-2024-005167
Vulnerability from jvndb
Published
2024-08-15 09:38
Modified
2024-08-15 09:38
Severity
Summary
EL Injection Vulnerability in Hitachi Tuning Manager
Details
An EL Injection Vulnerability exists in Hitachi Tuning Manager.
<a href="https://www.cve.org/CVERecord?id=CVE-2024-5828"target="blank">CVE-2024-5828:EL Injection Vulnerability in Hitachi Tuning Manager (Display new window)</a>
References
| Type | URL |
|---|---|
| CVE | https://www.cve.org/CVERecord?id=CVE-2024-5828 |
| Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')(CWE-917) | https://cwe.mitre.org/data/definitions/917.html |
Impacted products
| Vendor | Product |
|---|---|
| Hitachi, Ltd | Hitachi Tuning Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-005167.html",
"dc:date": "2024-08-15T09:38+09:00",
"dcterms:issued": "2024-08-15T09:38+09:00",
"dcterms:modified": "2024-08-15T09:38+09:00",
"description": "An EL Injection Vulnerability exists in Hitachi Tuning Manager.\r\n\u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-5828\"target=\"blank\"\u003eCVE-2024-5828:EL Injection Vulnerability in Hitachi Tuning Manager (Display new window)\u003c/a\u003e",
"link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-005167.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "8.6",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2024-005167",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-5828",
"@id": "CVE-2024-5828",
"@source": "CVE"
},
{
"#text": "https://cwe.mitre.org/data/definitions/917.html",
"@id": "CWE-917",
"@title": "Improper Neutralization of Special Elements used in an Expression Language Statement (\u0027Expression Language Injection\u0027)(CWE-917)"
}
],
"title": "EL Injection Vulnerability in Hitachi Tuning Manager"
}
jvndb-2022-001382
Vulnerability from jvndb
Published
2022-03-07 15:35
Modified
2022-03-07 15:35
Summary
File Permission Vulnerability in Hitachi Command Suite
Details
A file permission vulnerability was found in HitachiHitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-001382.html",
"dc:date": "2022-03-07T15:35+09:00",
"dcterms:issued": "2022-03-07T15:35+09:00",
"dcterms:modified": "2022-03-07T15:35+09:00",
"description": "A file permission vulnerability was found in HitachiHitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-001382.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2022-001382",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "File Permission Vulnerability in Hitachi Command Suite"
}
jvndb-2009-002345
Vulnerability from jvndb
Published
2009-12-24 14:32
Modified
2009-12-24 14:32
Summary
StartTLS not enabled in Hitachi Storage Command Suite products
Details
When a Hitachi Storage Command Suite product uses an LDAP directory server as the server to be used for external authentication, StartTLS won't be enabled even if it is specified as the connection protocol.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002345.html",
"dc:date": "2009-12-24T14:32+09:00",
"dcterms:issued": "2009-12-24T14:32+09:00",
"dcterms:modified": "2009-12-24T14:32+09:00",
"description": "When a Hitachi Storage Command Suite product uses an LDAP directory server as the server to be used for external authentication, StartTLS won\u0027t be enabled even if it is specified as the connection protocol.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002345.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-002345",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-16",
"@title": "Configuration(CWE-16)"
},
"title": "StartTLS not enabled in Hitachi Storage Command Suite products"
}
jvndb-2016-002715
Vulnerability from jvndb
Published
2016-05-24 16:43
Modified
2016-08-03 16:09
Severity
Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002715.html",
"dc:date": "2016-08-03T16:09+09:00",
"dcterms:issued": "2016-05-24T16:43+09:00",
"dcterms:modified": "2016-08-03T16:09+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002715.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_availability_manager",
"@product": "Hitachi Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_replication_monitor",
"@product": "Hitachi Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_device_manager",
"@product": "JP1/HiCommand Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_global_link_availability_manager",
"@product": "JP1/HiCommand Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_replication_monitor",
"@product": "JP1/HiCommand Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tiered_storage_manager",
"@product": "JP1/HiCommand Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "3.5",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:S/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "3.1",
"@severity": "Low",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2016-002715",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}
jvndb-2019-011486
Vulnerability from jvndb
Published
2019-11-11 14:10
Modified
2019-11-11 14:10
Summary
Arbitrary File Deletion Vulnerability in Hitachi Command Suite
Details
An arbitrary file deletion vulnerability was found in Hitachi Command Suite.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011486.html",
"dc:date": "2019-11-11T14:10+09:00",
"dcterms:issued": "2019-11-11T14:10+09:00",
"dcterms:modified": "2019-11-11T14:10+09:00",
"description": "An arbitrary file deletion vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011486.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-011486",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Arbitrary File Deletion Vulnerability in Hitachi Command Suite"
}
jvndb-2020-007127
Vulnerability from jvndb
Published
2020-08-03 16:36
Modified
2020-08-03 16:36
Summary
Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center
Details
Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-007127.html",
"dc:date": "2020-08-03T16:36+09:00",
"dcterms:issued": "2020-08-03T16:36+09:00",
"dcterms:modified": "2020-08-03T16:36+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center.",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-007127.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:configuration_manager",
"@product": "Hitachi Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:dynamic_link_manager",
"@product": "Hitachi Dynamic Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_ops_center_analyzer_viewpoint",
"@product": "Hitachi Ops Center Analyzer viewpoint",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_ops_center_api_configuration_manager",
"@product": "Hitachi Ops Center API Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_analyzer",
"@product": "Hitachi Ops Center Analyzer",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_automator",
"@product": "Hitachi Ops Center Automator",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_common_services",
"@product": "Hitachi Ops Center Common Services",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2020-007127",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center"
}
jvndb-2019-008917
Vulnerability from jvndb
Published
2019-09-09 15:58
Modified
2019-09-09 15:58
Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-008917.html",
"dc:date": "2019-09-09T15:58+09:00",
"dcterms:issued": "2019-09-09T15:58+09:00",
"dcterms:modified": "2019-09-09T15:58+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-008917.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:configuration_manager",
"@product": "Hitachi Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-008917",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
jvndb-2016-002716
Vulnerability from jvndb
Published
2016-05-24 16:43
Modified
2016-08-03 16:09
Severity
Summary
Cross-site Scripting Vulnerability in Hitachi Tuning Manager
Details
A cross-site scripting vulnerability was found in Hitachi Tuning Manager.
Impacted products
| Vendor | Product |
|---|---|
| Hitachi, Ltd | Hitachi Tuning Manager |
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002716.html",
"dc:date": "2016-08-03T16:09+09:00",
"dcterms:issued": "2016-05-24T16:43+09:00",
"dcterms:modified": "2016-08-03T16:09+09:00",
"description": "A cross-site scripting vulnerability was found in Hitachi Tuning Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002716.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
{
"@score": "4.7",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2016-002716",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Tuning Manager"
}
jvndb-2018-006236
Vulnerability from jvndb
Published
2018-08-14 10:04
Modified
2019-07-24 17:02
Severity
Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-006236.html",
"dc:date": "2019-07-24T17:02+09:00",
"dcterms:issued": "2018-08-14T10:04+09:00",
"dcterms:modified": "2019-07-24T17:02+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-006236.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "4.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2018-006236",
"sec:references": [
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14735",
"@id": "CVE-2018-14735",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-14735",
"@id": "CVE-2018-14735",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}