Latest Vulnerabilities Affecting Hitachi products

Date	CVE	Title	CVSS
2018-08-09	CVE-2018-14735	Information Leak / Disclosure vulnerability in Hitachi and products	Medium
2017-05-29	CVE-2017-9297	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hitachi Device Manager 8.5.2	Medium
2017-05-29	CVE-2017-9295	Improper Restriction of XML External Entity Reference ('XXE') vulnerability in Hitachi Device Manager 8.5.2	Medium
2017-05-29	CVE-2017-9294	Improper Access Control vulnerability in Hitachi Device Manager 8.5.2	High
2017-05-29	CVE-2017-9296	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hitachi Device Manager 8.5.2	Medium
2017-05-29	CVE-2017-9298	Cross-Site Scripting (XSS) vulnerability in Hitachi Device Manager 8.5.2	Low
2015-02-09	CVE-2015-1565	Cross-Site Scripting (XSS) vulnerability in Hitachi and products	Medium
2014-06-17	CVE-2014-4189	Cross-Site Scripting (XSS) vulnerability in Hitachi Jp1/Performance Management Manager WEB Option and Tuning Manager	Medium
2014-06-17	CVE-2014-4188	Cross-Site Request Forgery (CSRF) vulnerability in Hitachi Jp1/Performance Management Manager WEB Option and Tuning Manager	Medium
2013-07-31	CVE-2013-4697	Insufficient Information vulnerability in Hitachi products	High
2012-10-25	CVE-2011-5217	Path Traversal vulnerability in Hitachi Jp1/Serverconductor/Deploymentmanager and Serverconductor/Deploymentmanager	Medium
2012-09-19	CVE-2012-5001	Insufficient Information vulnerability in Hitachi Jp1/Cm2/Network Node Manager	High
2012-08-13	CVE-2012-4274	Insufficient Information vulnerability in Hitachi Cobol GUI Option and Cobol GUI Option Server	High
2012-08-13	CVE-2012-4275	Cross-Site Scripting (XSS) vulnerability in Hitachi IT Operations Director	Medium
2012-08-13	CVE-2012-4276	Insufficient Information vulnerability in Hitachi IT Operations Director	Medium

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.