Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hitachi tuning manager vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2023-6457
Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows (Hitachi Tuning Manager server component) allows local users to read and write specific files.This issue affects Hitachi Tuning Manager: prior to 8.8.5-04.
Hitachi Tuning Manager
7.8
CVSSv3
CVE-2020-36695
Incorrect Default Permissions vulnerability in Hitachi Device Manager on Linux (Device Manager Server component), Hitachi Tiered Storage Manager on Linux, Hitachi Replication Manager on Linux, Hitachi Tuning Manager on Linux (Hitachi Tuning Manager server, Hitachi Tuning Manager ...
Hitachi Compute Systems Manager
Hitachi Device Manager
Hitachi Replication Manager
Hitachi Tiered Storage Manager
Hitachi Tuning Manager
7.5
CVSSv3
CVE-2023-24998
Apache Commons FileUpload prior to 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads. Note that, like all of the file upload limits, the new configuration option...
Apache Commons Fileupload
Apache Commons Fileupload 1.0
Debian Debian Linux 9.0
Debian Debian Linux 11.0
7.1
CVSSv3
CVE-2020-36611
Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Linux (Hitachi Tuning Manager server, Hitachi Tuning Manager - Agent for RAID, Hitachi Tuning Manager - Agent for NAS, Hitachi Tuning Manager - Agent for SAN Switch components) allows local users to read and...
Hitachi Tuning Manager
9.8
CVSSv3
CVE-2022-22965
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e....
Vmware Spring Framework
Cisco Cx Cloud Agent
Oracle Sd-wan Edge 9.0
Oracle Retail Xstore Point Of Service 20.0.1
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Financial Services Analytical Applications Infrastructure 8.1.1
Oracle Sd-wan Edge 9.1
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Oracle Product Lifecycle Analytics 3.6.1
Oracle Financial Services Enterprise Case Management 8.1.1.0
Oracle Financial Services Enterprise Case Management 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.2.0
Oracle Financial Services Behavior Detection Platform 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.1.0
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 1.15.0
Oracle Communications Cloud Native Core Unified Data Repository 22.1.0
Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.0
171 Github repositories
7 Articles
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1160 Github repositories
28 Articles
6.5
CVSSv3
CVE-2018-21033
A vulnerability in Hitachi Command Suite before 8.6.2-00, Hitachi Automation Director before 8.6.2-00 and Hitachi Infrastructure Analytics Advisor before 4.2.0-00 allow authenticated remote users to load an arbitrary Cascading Style Sheets (CSS) token sequence. Hitachi Command Su...
Hitachi Device Manager
Hitachi Compute Systems Manager
Hitachi Automation Director
Hitachi Tiered Storage Manager
Hitachi Replication Manager
Hitachi Tuning Manager
Hitachi Global Link Manager
Hitachi Infrastructure Analytics Advisor
6.1
CVSSv3
CVE-2017-9296
Open Redirect vulnerability in Hitachi Device Manager prior to 8.5.2-01 and Hitachi Tuning Manager prior to 8.5.2-00 allows remote malicious users to redirect authenticated users to arbitrary web sites.
Hitachi Device Manager
NA
CVE-2014-4189
Cross-site scripting (XSS) vulnerability in Hitachi Tuning Manager prior to 7.6.1-06 and 8.x prior to 8.0.0-04 and JP1/Performance Management - Manager Web Option 07-00 through 07-54 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Hitachi Tuning Manager 8.0.0
Hitachi Jp1\\/performance Management-manager Web Option 07-00
Hitachi Jp1\\/performance Management-manager Web Option 07-54
Hitachi Tuning Manager 6.0.0
Hitachi Tuning Manager 7.6.1
Hitachi Tuning Manager 7.1.0
NA
CVE-2014-4188
Cross-site request forgery (CSRF) vulnerability in Hitachi Tuning Manager prior to 7.6.1-06 and 8.x prior to 8.0.0-04 and JP1/Performance Management - Manager Web Option 07-00 through 07-54 allows remote malicious users to hijack the authentication of unspecified victims via unkn...
Hitachi Tuning Manager 6.0.0
Hitachi Tuning Manager 7.1.0
Hitachi Tuning Manager 8.0.0
Hitachi Jp1\\/performance Management-manager Web Option 07-00
Hitachi Tuning Manager 7.6.1
Hitachi Jp1\\/performance Management-manager Web Option 07-54
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »