Vulnerabilities > Hitachi

DATE CVE VULNERABILITY TITLE RISK
2020-02-14 CVE-2018-21033 Improper Input Validation vulnerability in Hitachi products
A vulnerability in Hitachi Command Suite prior to 8.6.2-00, Hitachi Automation Director prior to 8.6.2-00 and Hitachi Infrastructure Analytics Advisor prior to 4.2.0-00 allow authenticated remote users to load an arbitrary Cascading Style Sheets (CSS) token sequence.
network
low complexity
hitachi linux microsoft oracle CWE-20
4.0
2020-02-14 CVE-2018-21032 Information Exposure Through AN Error Message vulnerability in Hitachi products
A vulnerability in Hitachi Command Suite prior to 8.7.1-00 and Hitachi Automation Director prior to 8.5.0-00 allow authenticated remote users to expose technical information through error messages.
network
low complexity
hitachi linux microsoft oracle CWE-209
4.0
2019-11-12 CVE-2019-17360 Resource Exhaustion vulnerability in Hitachi products
A vulnerability in Hitachi Command Suite 7.x and 8.x before 8.7.0-00 allows an unauthenticated remote user to trigger a denial of service (DoS) condition because of Uncontrolled Resource Consumption.
network
low complexity
hitachi CWE-400
5.0
2019-11-12 CVE-2018-21026 Information Exposure vulnerability in Hitachi products
A vulnerability in Hitachi Command Suite 7.x and 8.x before 8.6.5-00 allows an unauthenticated remote user to read internal information.
network
low complexity
hitachi linux microsoft oracle CWE-200
5.0
2018-08-09 CVE-2018-14735 Information Exposure vulnerability in Hitachi products
An Information Exposure issue was discovered in Hitachi Command Suite 8.5.3.
network
low complexity
hitachi linux microsoft CWE-200
5.0
2017-05-29 CVE-2017-9298 Cross-Site Scripting vulnerability in Hitachi Device Manager 7.0.0/7.0.000/8.1.1
Cross-site scripting vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Replication Manager before 8.5.2-00 allows authenticated remote users to execute arbitrary JavaScript code.
network
hitachi CWE-79
3.5
2017-05-29 CVE-2017-9297 Open Redirect vulnerability in Hitachi Device Manager 7.0.0/7.0.000/8.1.1
Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to redirect users to arbitrary web sites.
network
hitachi CWE-601
5.8
2017-05-29 CVE-2017-9296 Open Redirect vulnerability in Hitachi Device Manager 7.0.0/7.0.000/8.1.1
Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Tuning Manager before 8.5.2-00 allows remote attackers to redirect authenticated users to arbitrary web sites.
network
hitachi CWE-601
5.8
2017-05-29 CVE-2017-9295 XXE vulnerability in Hitachi Device Manager 7.0.0/7.0.000/8.1.1
XXE vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Replication Manager before 8.5.2-00 allows authenticated remote users to read arbitrary files.
network
low complexity
hitachi CWE-611
4.0
2017-05-29 CVE-2017-9294 Arbitrary Command Execution vulnerability in Hitachi Device Manager 7.0.0/7.0.000/8.1.1
RMI vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to execute internal commands without authentication via RMI ports.
network
low complexity
hitachi
7.5