All the vulnerabilites related to Hitachi, Ltd - NETM/DM
jvndb-2016-005655
Vulnerability from jvndb
Published
2016-11-10 16:59
Modified
2016-11-10 16:59
Severity ?
Summary
Vulnerabilitie in JP1/IT Desktop Management 2 - Manager and JP1/NETM/DM
Details
A Remote Command Execution Vulnerability was found in JP1/IT Desktop Management 2 - Manager and JP1/NETM/DM.
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-005655.html",
"dc:date": "2016-11-10T16:59+09:00",
"dcterms:issued": "2016-11-10T16:59+09:00",
"dcterms:modified": "2016-11-10T16:59+09:00",
"description": "A Remote Command Execution Vulnerability was found in JP1/IT Desktop Management 2 - Manager and JP1/NETM/DM.",
"link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-005655.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:groupmax_remote_installation_client",
"@product": "Groupmax Remote Installation Client",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:job_management_partner_1%2Fit_desktop_management",
"@product": "Job Management Partner 1/IT Desktop Management",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:job_management_partner_1%2Fsoftware_distribution",
"@product": "Job Management Partner 1/Software Distribution",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:job_management_partner_1_software_distribution_client",
"@product": "Job Management Partner 1/Software Distribution Client",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:job_management_partner_1_software_distribution_manager",
"@product": "Job Management Partner 1/Software Distribution Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:job_management_partner_1_software_distribution_submanager",
"@product": "Job Management Partner 1/Software Distribution SubManager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1%2Fnetm%2Fdm%2Fw",
"@product": "JP1/NETM/DM/W",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1_it_desktop_management",
"@product": "JP1/IT Desktop Management",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1_netm-dm_manager",
"@product": "JP1/NETM/DM Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1_netm_dm_client",
"@product": "JP1/NETM/DM Client",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1_netm_dm_submanager",
"@product": "JP1/NETM/DM SubManager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:netm%2Fdm%2Fp",
"@product": "NETM/DM/P",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:netm%2Fdm%2Fw",
"@product": "NETM/DM/W",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:netm_dm",
"@product": "NETM/DM",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "10.0",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"@version": "2.0"
},
{
"@score": "9.8",
"@severity": "Critical",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2016-005655",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Vulnerabilitie in JP1/IT Desktop Management 2 - Manager and JP1/NETM/DM"
}
jvndb-2007-000699
Vulnerability from jvndb
Published
2008-05-21 00:00
Modified
2008-05-21 00:00
Summary
JP1/NETM/DM Manager SQL Injection Vulnerability
Details
JP1/NETM/DM Manager for Windows is vulnerable to SQL injection where a relational database is used as the JP1/NETM/DM database. This could allow attackers to execute arbitrary SQL command and/or corrupt database when it receives a malformed request.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000699.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "JP1/NETM/DM Manager for Windows is vulnerable to SQL injection where a relational database is used as the JP1/NETM/DM database. This could allow attackers to execute arbitrary SQL command and/or corrupt database when it receives a malformed request.",
"link": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000699.html",
"sec:cpe": [
{
"#text": "cpe:/a:hitachi:groupmax_remote_installation_server",
"@product": "Groupmax Remote Installation Server",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:job_management_partner_1_software_distribution_manager",
"@product": "Job Management Partner 1/Software Distribution Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:jp1_netm-dm_manager",
"@product": "JP1/NETM/DM Manager",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
{
"#text": "cpe:/a:hitachi:netm_dm",
"@product": "NETM/DM",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "7.5",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2007-000699",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3793",
"@id": "CVE-2007-3793",
"@source": "CVE"
},
{
"#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3793",
"@id": "CVE-2007-3793",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/26052",
"@id": "SA26052",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/24903",
"@id": "24903",
"@source": "BID"
},
{
"#text": "http://xforce.iss.net/xforce/xfdb/35386",
"@id": "35386",
"@source": "XF"
},
{
"#text": "http://www.frsirt.com/english/advisories/2007/2535",
"@id": "FrSIRT/ADV-2007-2535",
"@source": "FRSIRT"
}
],
"title": "JP1/NETM/DM Manager SQL Injection Vulnerability"
}