Search criteria
25 vulnerabilities found for Hitachi Tuning Manager by Hitachi, Ltd
JVNDB-2024-005167
Vulnerability from jvndb - Published: 2024-08-15 09:38 - Updated:2024-08-15 09:38
Severity ?
Summary
EL Injection Vulnerability in Hitachi Tuning Manager
Details
An EL Injection Vulnerability exists in Hitachi Tuning Manager.
CVE-2024-5828:EL Injection Vulnerability in Hitachi Tuning Manager (Display new window)
References
| Type | URL | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-005167.html",
"dc:date": "2024-08-15T09:38+09:00",
"dcterms:issued": "2024-08-15T09:38+09:00",
"dcterms:modified": "2024-08-15T09:38+09:00",
"description": "An EL Injection Vulnerability exists in Hitachi Tuning Manager.\r\n\u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-5828\"target=\"blank\"\u003eCVE-2024-5828:EL Injection Vulnerability in Hitachi Tuning Manager (Display new window)\u003c/a\u003e",
"link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-005167.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "8.6",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2024-005167",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2024-5828",
"@id": "CVE-2024-5828",
"@source": "CVE"
},
{
"#text": "https://cwe.mitre.org/data/definitions/917.html",
"@id": "CWE-917",
"@title": "Improper Neutralization of Special Elements used in an Expression Language Statement (\u0027Expression Language Injection\u0027)(CWE-917)"
}
],
"title": "EL Injection Vulnerability in Hitachi Tuning Manager"
}
JVNDB-2024-001462
Vulnerability from jvndb - Published: 2024-02-05 14:54 - Updated:2024-02-05 14:54
Severity ?
Summary
File and Directory Permissions Vulnerability in Hitachi Tuning Manager
Details
A File and Directory Permissions Vulnerability (CVE-2023-6457) exists in Hitachi Tuning Manager.
References
| Type | URL | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-001462.html",
"dc:date": "2024-02-05T14:54+09:00",
"dcterms:issued": "2024-02-05T14:54+09:00",
"dcterms:modified": "2024-02-05T14:54+09:00",
"description": "A File and Directory Permissions Vulnerability (CVE-2023-6457) exists in Hitachi Tuning Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2024/JVNDB-2024-001462.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "6.6",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2024-001462",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-6457",
"@id": "CVE-2023-6457",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-6457",
"@id": "CVE-2023-6457",
"@source": "NVD"
},
{
"#text": "https://cwe.mitre.org/data/definitions/276.html",
"@id": "CWE-276",
"@title": "Incorrect Default Permissions(CWE-276)"
}
],
"title": "File and Directory Permissions Vulnerability in Hitachi Tuning Manager"
}
JVNDB-2023-003771
Vulnerability from jvndb - Published: 2023-10-04 15:23 - Updated:2023-10-04 15:23
Severity ?
Summary
File and Directory Permissions Vulnerability in JP1/Performance Management
Details
A File and Directory Permissions Vulnerability (CVE-2023-3440) exists in JP1/Performance Management.
References
| Type | URL | |
|---|---|---|
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-003771.html",
"dc:date": "2023-10-04T15:23+09:00",
"dcterms:issued": "2023-10-04T15:23+09:00",
"dcterms:modified": "2023-10-04T15:23+09:00",
"description": "A File and Directory Permissions Vulnerability (CVE-2023-3440) exists in JP1/Performance Management.",
"link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-003771.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:jp1%2fperformance_management",
"@product": "JP1/Performance Management",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "8.4",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2023-003771",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2023-3440",
"@id": "CVE-2023-3440",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-3440",
"@id": "CVE-2023-3440",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "File and Directory Permissions Vulnerability in JP1/Performance Management"
}
JVNDB-2023-002511
Vulnerability from jvndb - Published: 2023-07-19 14:48 - Updated:2024-04-26 12:29
Severity ?
Summary
File and Directory Permissions Vulnerability in Hitachi Command Suite
Details
A File and Directory Permissions Vulnerability (CVE-2020-36695) exists in Hitachi Command Suite.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-002511.html",
"dc:date": "2024-04-26T12:29+09:00",
"dcterms:issued": "2023-07-19T14:48+09:00",
"dcterms:modified": "2024-04-26T12:29+09:00",
"description": "A File and Directory Permissions Vulnerability (CVE-2020-36695) exists in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-002511.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "6.6",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2023-002511",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2020-36695",
"@id": "CVE-2020-36695",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2020-36695",
"@id": "CVE-2020-36695",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "File and Directory Permissions Vulnerability in Hitachi Command Suite"
}
JVNDB-2023-001008
Vulnerability from jvndb - Published: 2023-01-18 13:51 - Updated:2023-01-18 13:51
Severity ?
Summary
File and Directory Permissions Vulnerability in Hitachi Tuning Manager
Details
A File and Directory Permissions Vulnerability (CVE-2020-36611) exists in Hitachi Tuning Manager.
References
| Type | URL | |
|---|---|---|
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-001008.html",
"dc:date": "2023-01-18T13:51+09:00",
"dcterms:issued": "2023-01-18T13:51+09:00",
"dcterms:modified": "2023-01-18T13:51+09:00",
"description": "A File and Directory Permissions Vulnerability (CVE-2020-36611) exists in Hitachi Tuning Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-001008.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "6.6",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"@version": "3.0"
},
"sec:identifier": "JVNDB-2023-001008",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2020-36611",
"@id": "CVE-2020-36611",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2020-36611",
"@id": "CVE-2020-36611",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "File and Directory Permissions Vulnerability in Hitachi Tuning Manager"
}
JVNDB-2022-001382
Vulnerability from jvndb - Published: 2022-03-07 15:35 - Updated:2022-03-07 15:35Summary
File Permission Vulnerability in Hitachi Command Suite
Details
A file permission vulnerability was found in HitachiHitachi Command Suite.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-001382.html",
"dc:date": "2022-03-07T15:35+09:00",
"dcterms:issued": "2022-03-07T15:35+09:00",
"dcterms:modified": "2022-03-07T15:35+09:00",
"description": "A file permission vulnerability was found in HitachiHitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-001382.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2022-001382",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "File Permission Vulnerability in Hitachi Command Suite"
}
JVNDB-2021-002810
Vulnerability from jvndb - Published: 2021-10-05 15:37 - Updated:2021-10-05 15:37Summary
Information Disclosure Vulnerability in Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer
Details
Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer contains information disclosure vulnerability.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2021/JVNDB-2021-002810.html",
"dc:date": "2021-10-05T15:37+09:00",
"dcterms:issued": "2021-10-05T15:37+09:00",
"dcterms:modified": "2021-10-05T15:37+09:00",
"description": "Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer contains information disclosure vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2021/JVNDB-2021-002810.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_analyzer",
"@product": "Hitachi Ops Center Analyzer",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2021-002810",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Information Disclosure Vulnerability in Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer"
}
JVNDB-2020-010072
Vulnerability from jvndb - Published: 2020-12-21 14:20 - Updated:2020-12-21 14:20Summary
Cross-site Scripting Vulnerability in Hitachi Command Suite
Details
A Cross-site Scripting vulnerability was found in Hitachi Command Suite.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-010072.html",
"dc:date": "2020-12-21T14:20+09:00",
"dcterms:issued": "2020-12-21T14:20+09:00",
"dcterms:modified": "2020-12-21T14:20+09:00",
"description": "A Cross-site Scripting vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-010072.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2020-010072",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Command Suite"
}
JVNDB-2020-007127
Vulnerability from jvndb - Published: 2020-08-03 16:36 - Updated:2020-08-03 16:36Summary
Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center
Details
Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-007127.html",
"dc:date": "2020-08-03T16:36+09:00",
"dcterms:issued": "2020-08-03T16:36+09:00",
"dcterms:modified": "2020-08-03T16:36+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center.",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-007127.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:configuration_manager",
"@product": "Hitachi Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:dynamic_link_manager",
"@product": "Hitachi Dynamic Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_ops_center_analyzer_viewpoint",
"@product": "Hitachi Ops Center Analyzer viewpoint",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_ops_center_api_configuration_manager",
"@product": "Hitachi Ops Center API Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_analyzer",
"@product": "Hitachi Ops Center Analyzer",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_automator",
"@product": "Hitachi Ops Center Automator",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:ops_center_common_services",
"@product": "Hitachi Ops Center Common Services",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2020-007127",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center"
}
JVNDB-2019-013272
Vulnerability from jvndb - Published: 2019-12-24 16:02 - Updated:2019-12-24 16:02Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
We would like to thank
Piotr Madej (ING Tech Poland)
for reporting the relevant issues.
References
Impacted products
| Vendor | Product | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-013272.html",
"dc:date": "2019-12-24T16:02+09:00",
"dcterms:issued": "2019-12-24T16:02+09:00",
"dcterms:modified": "2019-12-24T16:02+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.\r\n\r\nWe would like to thank \r\nPiotr Madej (ING Tech Poland)\r\nfor reporting the relevant issues.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-013272.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-013272",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2018-21032",
"@id": "CVE-2018-21032",
"@source": "CVE"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2018-21033",
"@id": "CVE-2018-21033",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21032",
"@id": "CVE-2018-21032",
"@source": "NVD"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21033",
"@id": "CVE-2018-21033",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
JVNDB-2019-011486
Vulnerability from jvndb - Published: 2019-11-11 14:10 - Updated:2019-11-11 14:10Summary
Arbitrary File Deletion Vulnerability in Hitachi Command Suite
Details
An arbitrary file deletion vulnerability was found in Hitachi Command Suite.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011486.html",
"dc:date": "2019-11-11T14:10+09:00",
"dcterms:issued": "2019-11-11T14:10+09:00",
"dcterms:modified": "2019-11-11T14:10+09:00",
"description": "An arbitrary file deletion vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011486.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-011486",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Arbitrary File Deletion Vulnerability in Hitachi Command Suite"
}
JVNDB-2019-011487
Vulnerability from jvndb - Published: 2019-11-11 14:09 - Updated:2019-11-11 14:09Summary
DoS Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
A DoS vulnerability was found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011487.html",
"dc:date": "2019-11-11T14:09+09:00",
"dcterms:issued": "2019-11-11T14:09+09:00",
"dcterms:modified": "2019-11-11T14:09+09:00",
"description": "A DoS vulnerability was found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011487.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-011487",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "DoS Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
JVNDB-2019-011488
Vulnerability from jvndb - Published: 2019-11-11 14:09 - Updated:2019-12-02 15:46Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011488.html",
"dc:date": "2019-12-02T15:46+09:00",
"dcterms:issued": "2019-11-11T14:09+09:00",
"dcterms:modified": "2019-12-02T15:46+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-011488.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-011488",
"sec:references": [
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21026",
"@id": "CVE-2018-21026",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-21026",
"@id": "CVE-2018-21026",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}
JVNDB-2019-008917
Vulnerability from jvndb - Published: 2019-09-09 15:58 - Updated:2019-09-09 15:58Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-008917.html",
"dc:date": "2019-09-09T15:58+09:00",
"dcterms:issued": "2019-09-09T15:58+09:00",
"dcterms:modified": "2019-09-09T15:58+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-008917.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:configuration_manager",
"@product": "Hitachi Configuration Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-008917",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
JVNDB-2019-003194
Vulnerability from jvndb - Published: 2019-05-13 15:25 - Updated:2019-05-13 15:25Summary
Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor
Details
Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-003194.html",
"dc:date": "2019-05-13T15:25+09:00",
"dcterms:issued": "2019-05-13T15:25+09:00",
"dcterms:modified": "2019-05-13T15:25+09:00",
"description": "Multiple vulnerabilities have been found in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor.",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-003194.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:infrastructure_analytics_advisor",
"@product": "Hitachi Infrastructure Analytics Advisor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:identifier": "JVNDB-2019-003194",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor"
}
JVNDB-2018-006236
Vulnerability from jvndb - Published: 2018-08-14 10:04 - Updated:2019-07-24 17:02
Severity ?
Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-006236.html",
"dc:date": "2019-07-24T17:02+09:00",
"dcterms:issued": "2018-08-14T10:04+09:00",
"dcterms:modified": "2019-07-24T17:02+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-006236.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "4.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2018-006236",
"sec:references": [
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14735",
"@id": "CVE-2018-14735",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-14735",
"@id": "CVE-2018-14735",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}
JVNDB-2017-008364
Vulnerability from jvndb - Published: 2017-10-17 16:26 - Updated:2017-10-18 12:31
Severity ?
Summary
RMI Vulnerability in Hitachi Tuning Manager
Details
A RMI Vulnerability was found in Hitachi Tuning Manager.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-008364.html",
"dc:date": "2017-10-18T12:31+09:00",
"dcterms:issued": "2017-10-17T16:26+09:00",
"dcterms:modified": "2017-10-18T12:31+09:00",
"description": "A RMI Vulnerability was found in Hitachi Tuning Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-008364.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "10.0",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"@version": "2.0"
},
{
"@score": "9.8",
"@severity": "Critical",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-008364",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "RMI Vulnerability in Hitachi Tuning Manager"
}
JVNDB-2016-002715
Vulnerability from jvndb - Published: 2016-05-24 16:43 - Updated:2016-08-03 16:09
Severity ?
Summary
Information Disclosure Vulnerability in Hitachi Command Suite
Details
An Information Disclosure Vulnerability was found in Hitachi Command Suite.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | ||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002715.html",
"dc:date": "2016-08-03T16:09+09:00",
"dcterms:issued": "2016-05-24T16:43+09:00",
"dcterms:modified": "2016-08-03T16:09+09:00",
"description": "An Information Disclosure Vulnerability was found in Hitachi Command Suite.",
"link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002715.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:automation_director",
"@product": "Hitachi Automation Director",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_availability_manager",
"@product": "Hitachi Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:hitachi_replication_monitor",
"@product": "Hitachi Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_device_manager",
"@product": "JP1/HiCommand Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_global_link_availability_manager",
"@product": "JP1/HiCommand Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_replication_monitor",
"@product": "JP1/HiCommand Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tiered_storage_manager",
"@product": "JP1/HiCommand Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "3.5",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:S/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "3.1",
"@severity": "Low",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2016-002715",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Information Disclosure Vulnerability in Hitachi Command Suite"
}
JVNDB-2016-002716
Vulnerability from jvndb - Published: 2016-05-24 16:43 - Updated:2016-08-03 16:09
Severity ?
Summary
Cross-site Scripting Vulnerability in Hitachi Tuning Manager
Details
A cross-site scripting vulnerability was found in Hitachi Tuning Manager.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002716.html",
"dc:date": "2016-08-03T16:09+09:00",
"dcterms:issued": "2016-05-24T16:43+09:00",
"dcterms:modified": "2016-08-03T16:09+09:00",
"description": "A cross-site scripting vulnerability was found in Hitachi Tuning Manager.",
"link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-002716.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
{
"@score": "4.7",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2016-002716",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Tuning Manager"
}
JVNDB-2014-002800
Vulnerability from jvndb - Published: 2014-06-12 11:43 - Updated:2015-03-03 16:59Summary
Multiple Vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management - Manager Web Option
Details
Hitachi Tuning Manager and JP1/Performance Management - Manager Web Option contains cross-site scripting and cross-site request forgery (CSRF) vulnerabilities.
These vulnerabilities can not be exploited, unless logging in these products.
References
| Type | URL | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-002800.html",
"dc:date": "2015-03-03T16:59+09:00",
"dcterms:issued": "2014-06-12T11:43+09:00",
"dcterms:modified": "2015-03-03T16:59+09:00",
"description": "Hitachi Tuning Manager and JP1/Performance Management - Manager Web Option contains cross-site scripting and cross-site request forgery (CSRF) vulnerabilities.\r\n\r\nThese vulnerabilities can not be exploited, unless logging in these products.",
"link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-002800.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:jp1%2fperformance_management",
"@product": "JP1/Performance Management",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "3.5",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2014-002800",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4188",
"@id": "CVE-2014-4188",
"@source": "CVE"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4189",
"@id": "CVE-2014-4189",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4188",
"@id": "CVE-2014-4188",
"@source": "NVD"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4189",
"@id": "CVE-2014-4189",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-352",
"@title": "Cross-Site Request Forgery(CWE-352)"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
}
],
"title": "Multiple Vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management - Manager Web Option"
}
JVNDB-2013-003074
Vulnerability from jvndb - Published: 2013-06-20 14:37 - Updated:2013-06-20 14:37Summary
Cross-site Scripting Vulnerability in Hitachi Command Suite Products
Details
Hitachi Command Suite Products contains a cross-site scripting vulnerability.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-003074.html",
"dc:date": "2013-06-20T14:37+09:00",
"dcterms:issued": "2013-06-20T14:37+09:00",
"dcterms:modified": "2013-06-20T14:37+09:00",
"description": "Hitachi Command Suite Products contains a cross-site scripting vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-003074.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:compute_systems_manager",
"@product": "Hitachi Compute Systems Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2013-003074",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
},
"title": "Cross-site Scripting Vulnerability in Hitachi Command Suite Products"
}
JVNDB-2013-001605
Vulnerability from jvndb - Published: 2013-02-22 20:09 - Updated:2013-02-22 20:09Summary
Multiple vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management
Details
Hitachi Tuning Manager, JP1/Performance Management - Web Console, and JP1/Performance Management - Manager Web Option contain Cross-site scripting and cross-site request forgery (CSRF) vulnerabilities.
These vulnerabilities can not be exploited, unless logging in these products.
References
| Type | URL | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-001605.html",
"dc:date": "2013-02-22T20:09+09:00",
"dcterms:issued": "2013-02-22T20:09+09:00",
"dcterms:modified": "2013-02-22T20:09+09:00",
"description": "Hitachi Tuning Manager, JP1/Performance Management - Web Console, and JP1/Performance Management - Manager Web Option contain Cross-site scripting and cross-site request forgery (CSRF) vulnerabilities.\r\n\r\nThese vulnerabilities can not be exploited, unless logging in these products.",
"link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-001605.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:job_management_partner_1_performance_management_web_console",
"@product": "Job Management Partner 1/Performance Management - Web Console",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1%2fperformance_management",
"@product": "JP1/Performance Management",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "9.0",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2013-001605",
"sec:references": [
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-352",
"@title": "Cross-Site Request Forgery(CWE-352)"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
}
],
"title": "Multiple vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management"
}
JVNDB-2011-001156
Vulnerability from jvndb - Published: 2011-04-01 15:52 - Updated:2011-04-01 15:52Summary
Hitachi Tuning Manager Software Cross-Site Scripting Vulnerability
Details
Hitachi Tuning Manager Software contains a cross-site scripting vulnerability.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-001156.html",
"dc:date": "2011-04-01T15:52+09:00",
"dcterms:issued": "2011-04-01T15:52+09:00",
"dcterms:modified": "2011-04-01T15:52+09:00",
"description": "Hitachi Tuning Manager Software contains a cross-site scripting vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-001156.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2011-001156",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
},
"title": "Hitachi Tuning Manager Software Cross-Site Scripting Vulnerability"
}
JVNDB-2010-001959
Vulnerability from jvndb - Published: 2010-09-15 13:45 - Updated:2010-09-15 13:45Summary
Denial of Service (DoS) Vulnerability in Hitachi Storage Command Suite Built-in Database
Details
A built-in database in Hitachi Storage Command Suite (HSCS) abends upon receiving maliciously-crafted data intended to exploit its denial of service (DoS) vulnerability. As a result, HSCS may become not operational or shutdown, for example, making operations from the screen and access to the database unavailable.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | |||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001959.html",
"dc:date": "2010-09-15T13:45+09:00",
"dcterms:issued": "2010-09-15T13:45+09:00",
"dcterms:modified": "2010-09-15T13:45+09:00",
"description": "A built-in database in Hitachi Storage Command Suite (HSCS) abends upon receiving maliciously-crafted data intended to exploit its denial of service (DoS) vulnerability. As a result, HSCS may become not operational or shutdown, for example, making operations from the screen and access to the database unavailable.",
"link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001959.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_device_manager",
"@product": "JP1/HiCommand Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_global_link_availability_manager",
"@product": "JP1/HiCommand Global Link Availability Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_provisioning_manager",
"@product": "JP1/HiCommand Provisioning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_replication_monitor",
"@product": "JP1/HiCommand Replication Monitor",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tiered_storage_manager",
"@product": "JP1/HiCommand Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1-hicommand_tuning_manager",
"@product": "JP1/HiCommand Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:provisioning_manager",
"@product": "Hitachi Provisioning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "7.8",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2010-001959",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
},
"title": "Denial of Service (DoS) Vulnerability in Hitachi Storage Command Suite Built-in Database"
}
JVNDB-2009-002345
Vulnerability from jvndb - Published: 2009-12-24 14:32 - Updated:2009-12-24 14:32Summary
StartTLS not enabled in Hitachi Storage Command Suite products
Details
When a Hitachi Storage Command Suite product uses an LDAP directory server as the server to be used for external authentication, StartTLS won't be enabled even if it is specified as the connection protocol.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002345.html",
"dc:date": "2009-12-24T14:32+09:00",
"dcterms:issued": "2009-12-24T14:32+09:00",
"dcterms:modified": "2009-12-24T14:32+09:00",
"description": "When a Hitachi Storage Command Suite product uses an LDAP directory server as the server to be used for external authentication, StartTLS won\u0027t be enabled even if it is specified as the connection protocol.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-002345.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:device_manager",
"@product": "Hitachi Device Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:global_link_manager",
"@product": "Hitachi Global Link Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:replication_manager",
"@product": "Hitachi Replication Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tiered_storage_manager",
"@product": "Hitachi Tiered Storage Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:tuning_manager",
"@product": "Hitachi Tuning Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-002345",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-16",
"@title": "Configuration(CWE-16)"
},
"title": "StartTLS not enabled in Hitachi Storage Command Suite products"
}