CVSS: 7.8EPSS: 0%CPEs: 106EXPL: 0CVE-2021-29645
https://notcve.org/view.php?id=CVE-2021-29645
12 Oct 2021 — Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 calls the SendMessageTimeoutW API with arbitrary arguments via a local pipe, leading to a local privilege escalation vulnerability. An attacker who exploits this issue could execute arbitrary code on the local system. Hitachi JP1/IT Desktop Management 2 Agent versiones 9 hasta 12, llaman a la API SendMessageTimeoutW con argumentos arbitrarios por medio de una tubería local, conllevando a una vulnerabilidad de escalada de privilegios local. Un atacante q... • https://www.hitachi.com/hirt/security/index.html •
CVSS: 10.0EPSS: 0%CPEs: 106EXPL: 0CVE-2021-29644
https://notcve.org/view.php?id=CVE-2021-29644
12 Oct 2021 — Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 contains a remote code execution vulnerability because of an Integer Overflow. An attacker with network access to port 31016 may exploit this issue to execute code with unrestricted privileges on the underlying OS. Hitachi JP1/IT Desktop Management 2 Agent versiones 9 hasta 12, contienen una vulnerabilidad de ejecución de código remota debido a un desbordamiento de enteros. Un atacante con acceso de red al puerto 31016 podría explotar este problema para... • https://www.hitachi.com/hirt/security/index.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.0EPSS: 0%CPEs: 20EXPL: 0CVE-2013-4697
https://notcve.org/view.php?id=CVE-2013-4697
31 Jul 2013 — Multiple unspecified vulnerabilities in Hitachi JP1/IT Desktop Management - Manager 09-50 through 09-50-03, 09-51 through 09-51-05, 10-00 through 10-00-02, and 10-01 through 10-01-02; Hitachi Job Management Partner 1/IT Desktop Management - Manager 09-50 through 09-50-03 and 10-01; and Hitachi IT Operations Director 02-50 through 02-50-07, 03-00 through 03-00-12, and 04-00 through 04-00-01 allow remote authenticated users to gain privileges via unknown vectors. Múltiples vulnerabilidades en Hitachi JP1/IT D... • http://jvn.jp/en/jp/JVN00065218/index.html •
CVSS: 6.1EPSS: 0%CPEs: 6EXPL: 0CVE-2012-4275
https://notcve.org/view.php?id=CVE-2012-4275
13 Aug 2012 — Cross-site scripting (XSS) vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07, 03-00 before 03-00-08 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Una vulnerabilidad de ejecución de comandos en sitios cruzados (XSS) en Hitachi IT Operations Director v02-50-01 a v02-50-07, v03-00 antes de v03-00-08, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://secunia.com/advisories/49144 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2012-4276
https://notcve.org/view.php?id=CVE-2012-4276
13 Aug 2012 — Unspecified vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07, 03-00 before 03-00-08 allows attackers to cause a denial of service via unknown attack vectors. Una vulnerabilidad no especificada en Hitachi IT Operations Director v02-50-01 a v02-50-07, y v03-00 a v03-00-08, permite a atacantes provocar una denegación de servicio a través de vectores de ataque desconocidos. • http://secunia.com/advisories/49144 •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2012-0919
https://notcve.org/view.php?id=CVE-2012-0919
24 Jan 2012 — Cross-site scripting (XSS) vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07, 03-00 through 03-00-04, and possibly other versions before 03-00-06, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en Hitachi IT Operations Director 02-50-01 hasta 02-50-07, 03-00 hasta 03-00-04, y posiblemente otras versiones antes de 03-00-06, permite a atacantes remotos inyectar secuen... • http://osvdb.org/78215 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •