Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Device_manager
(Hitachi)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 16 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-02-14 | CVE-2018-21032 | A vulnerability in Hitachi Command Suite prior to 8.7.1-00 and Hitachi Automation Director prior to 8.5.0-00 allow authenticated remote users to expose technical information through error messages. Hitachi Command Suite includes Hitachi Device Manager and Hitachi Compute Systems Manager. | Automation_director, Compute_systems_manager, Device_manager | N/A | ||
| 2019-11-12 | CVE-2019-17360 | A vulnerability in Hitachi Command Suite 7.x and 8.x before 8.7.0-00 allows an unauthenticated remote user to trigger a denial of service (DoS) condition because of Uncontrolled Resource Consumption. | Device_manager, Infrastructure_analytics_advisor, Replication_manager, Tiered_storage_manager, Tuning_manager | N/A | ||
| 2019-11-12 | CVE-2018-21026 | A vulnerability in Hitachi Command Suite 7.x and 8.x before 8.6.5-00 allows an unauthenticated remote user to read internal information. | Compute_systems_manager, Device_manager, Replication_manager, Tiered_storage_manager, Tuning_manager | N/A | ||
| 2018-08-09 | CVE-2018-14735 | An Information Exposure issue was discovered in Hitachi Command Suite 8.5.3. A remote attacker may be able to exploit a flaw in the permission of messaging that may allow for information exposure via a crafted message. | Command_suite, Compute_systems_manager, Device_manager, Replication_manager, Tiered_storage_manager, Tuning_manager | 7.5 | ||
| 2017-05-29 | CVE-2017-9298 | Cross-site scripting vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Replication Manager before 8.5.2-00 allows authenticated remote users to execute arbitrary JavaScript code. | Device_manager | 5.4 | ||
| 2017-05-29 | CVE-2017-9297 | Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to redirect users to arbitrary web sites. | Device_manager | 6.1 | ||
| 2017-05-29 | CVE-2017-9296 | Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Tuning Manager before 8.5.2-00 allows remote attackers to redirect authenticated users to arbitrary web sites. | Device_manager | 6.1 | ||
| 2017-05-29 | CVE-2017-9295 | XXE vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Replication Manager before 8.5.2-00 allows authenticated remote users to read arbitrary files. | Device_manager | 6.5 | ||
| 2017-05-29 | CVE-2017-9294 | RMI vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to execute internal commands without authentication via RMI ports. | Device_manager | 9.8 | ||
| 2015-02-09 | CVE-2015-1565 | Cross-site scripting (XSS) vulnerability in the online help in Hitachi Device Manager, Tiered Storage Manager, Replication Manager, and Global Link Manager before 8.1.2-00, and Compute Systems Manager before 7.6.1-08 and 8.x before 8.1.2-00, as used in Hitachi Command Suite, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | Compute_systems_manager, Device_manager, Global_link_manager, Replication_manager, Tiered_storage_manager | N/A |