Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-06	CVE-2022-34882	Information Exposure Through an Error Message vulnerability in Hitachi Raid Manager Storage Replication Adapter Information Exposure Through an Error Message vulnerability in Hitachi RAID Manager Storage Replication Adapter allows remote authenticated users to gain sensitive information. network low complexity hitachi CWE-209	6.5
2022-01-28	CVE-2021-40338	Information Exposure Through an Error Message vulnerability in Hitachi Linkone Hitachi Energy LinkOne product, has a vulnerability due to a web server misconfiguration, that enables debug mode and reveals the full path of the filesystem directory when an attacker generates errors during a query operation. network low complexity hitachi CWE-209	5.3
2022-01-25	CVE-2021-40337	Cross-site Scripting vulnerability in Hitachi Linkone Cross-site Scripting (XSS) vulnerability in Hitachi Energy LinkOne allows an attacker that manages to exploit the vulnerability can take advantage to exploit multiple web attacks and stole sensitive information. network low complexity hitachi CWE-79	5.4
2021-11-08	CVE-2021-31600	Files or Directories Accessible to External Parties vulnerability in Hitachi products An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence Server through 7.x. network low complexity hitachi CWE-552	4.3
2021-11-08	CVE-2021-31601	Unspecified vulnerability in Hitachi products An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence Server through 7.x. network low complexity hitachi	6.5
2021-09-29	CVE-2021-41573	Files or Directories Accessible to External Parties vulnerability in Hitachi Content Platform Anywhere 4.4.5/4.5.0 Hitachi Content Platform Anywhere (HCP-AW) 4.4.5 and later allows information disclosure. network low complexity hitachi CWE-552	6.5
2021-06-22	CVE-2021-20741	Cross-site Scripting vulnerability in Hitachi Application Server V10 Manual 101101 Cross-site scripting vulnerability in Hitachi Application Server Help (Hitachi Application Server V10 Manual (Windows) version 10-11-01 and earlier and Hitachi Application Server V10 Manual (UNIX) version 10-11-01 and earlier) allows a remote attacker to inject an arbitrary script via unspecified vectors. network low complexity hitachi CWE-79	6.1
2021-01-29	CVE-2020-24670	Cross-site Scripting vulnerability in Hitachi Vantara Pentaho 7.0.0/8.0.0 The Dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains a reflected Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. network low complexity hitachi CWE-79	5.4
2021-01-29	CVE-2020-24669	Cross-site Scripting vulnerability in Hitachi Vantara Pentaho The New Analysis Report in Hitachi Vantara Pentaho through 7.x - 8.x contains a DOM-based Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. network low complexity hitachi CWE-79	5.4
2021-01-29	CVE-2020-24666	Cross-site Scripting vulnerability in Hitachi Vantara Pentaho The Analysis Report in Hitachi Vantara Pentaho through 7.x - 8.x contains a stored Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. network low complexity hitachi CWE-79	5.4