NotCVE - vendor:"Emc" product:"Replication Manager" version:"5.4"

8 results (0.008 seconds)

CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-4146 – EL Injection Vulnerability in Hitachi Replication Manager

https://notcve.org/view.php?id=CVE-2022-4146

18 Jul 2023 — Expression Language Injection vulnerability in Hitachi Replication Manager on Windows, Linux, Solaris allows Code Injection.This issue affects Hitachi Replication Manager: before 8.8.5-02. • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-123/index.html • CWE-917: Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') •

CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0

CVE-2020-36695 – File and Directory Permission Vulnerability in Hitachi Command Suite

https://notcve.org/view.php?id=CVE-2020-36695

18 Jul 2023 — Incorrect Default Permissions vulnerability in Hitachi Device Manager on Linux (Device Manager Server component), Hitachi Tiered Storage Manager on Linux, Hitachi Replication Manager on Linux, Hitachi Tuning Manager on Linux (Hitachi Tuning Manager server, Hitachi Tuning Manager - Agent for RAID, Hitachi Tuning Manager - Agent for NAS components), Hitachi Compute Systems Manager on Linux allows File Manipulation.This issue affects Hitachi Device Manager: before 8.8.5-02; Hitachi Tiered Storage Manager: befo... • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-124/index.html • CWE-276: Incorrect Default Permissions •

CVSS: 6.5EPSS: 0%CPEs: 24EXPL: 0

CVE-2018-21033

https://notcve.org/view.php?id=CVE-2018-21033

14 Feb 2020 — A vulnerability in Hitachi Command Suite prior to 8.6.2-00, Hitachi Automation Director prior to 8.6.2-00 and Hitachi Infrastructure Analytics Advisor prior to 4.2.0-00 allow authenticated remote users to load an arbitrary Cascading Style Sheets (CSS) token sequence. Hitachi Command Suite includes Hitachi Device Manager, Hitachi Tiered Storage Manager, Hitachi Replication Manager, Hitachi Tuning Manager, Hitachi Global Link Manager and Hitachi Compute Systems Manager. Una vulnerabilidad en Hitachi Command S... • http://www.hitachi.co.jp/Prod/comp/soft1/global/security • CWE-20: Improper Input Validation •

CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0

CVE-2016-0913 – EMC Replication Manager / Network Module Remote Code Execution

https://notcve.org/view.php?id=CVE-2016-0913

04 Oct 2016 — The client in EMC Replication Manager (RM) before 5.5.3.0_01-PatchHotfix, EMC Network Module for Microsoft 3.x, and EMC Networker Module for Microsoft 8.2.x before 8.2.3.6 allows remote RM servers to execute arbitrary commands by placing a crafted script in an SMB share. El cliente en EMC Replication Manager (RM) en versiones anteriores a 5.5.3.0_01-PatchHotfix, EMC Network Module para Microsoft 3.x y EMC Networker Module para Microsoft 8.2.x en versiones anteriores a 8.2.3.6 permite a servidores RM remotos... • http://seclists.org/bugtraq/2016/Oct/6 • CWE-20: Improper Input Validation •

CVSS: 6.1EPSS: 0%CPEs: 12EXPL: 0

CVE-2015-1565

https://notcve.org/view.php?id=CVE-2015-1565

09 Feb 2015 — Cross-site scripting (XSS) vulnerability in the online help in Hitachi Device Manager, Tiered Storage Manager, Replication Manager, and Global Link Manager before 8.1.2-00, and Compute Systems Manager before 7.6.1-08 and 8.x before 8.1.2-00, as used in Hitachi Command Suite, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en la ayuda online en Hitachi Device Manager, Tiered Storage Manager, Replication Manager, y Global Link Manager anterior a 8.... • http://secunia.com/advisories/62579 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0

CVE-2014-4634 – EMC Replication Manager / AppSync Path Enumeration

https://notcve.org/view.php?id=CVE-2014-4634

30 Dec 2014 — Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character. Vulnerabilidad de búsqueda de ruta en Windows sin entrecomillar en EMC Replication Manager a través de 5.5.2 y AppSync anterior a 2.1.0 permite a usuarios locales obtener privilegios a través de un troyano con el nombre compuesto por una subcaden... • http://archives.neohapsis.com/archives/bugtraq/2014-12/0170.html •

CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0

CVE-2013-6182 – EMC Replication Manager Unquoted File Path Enumeration

https://notcve.org/view.php?id=CVE-2013-6182

24 Dec 2013 — Unquoted Windows search path vulnerability in EMC Replication Manager before 5.5 allows local users to gain privileges via a crafted application in a parent directory of an intended directory. Vulnerabilidad de búsqueda de ruta de EMC Replication Manager antes de 5,5 que permite a usuarios locales conseguir privilegios a través de una aplicación diseñada en un directorio padre de un directorio previsto. EMC Replication Manager allows a user to create scripts with unquoted element such as whitespace or other... • http://archives.neohapsis.com/archives/bugtraq/2013-12/0139.html •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2013-3272 – EMC Replication Manager Information Disclosure

https://notcve.org/view.php?id=CVE-2013-3272

06 Jul 2013 — EMC Replication Manager (RM) before 5.4.4 places encoded passwords in application log files, which makes it easier for local users to obtain sensitive information by reading a file and conducting an unspecified decoding attack. EMC Replication Manager (RM) anterior a v5.4.4 codifica las contraseñas en los archivos de registro de aplicación, que hace más fácil para los usuarios locales obtener información sensible mediante la lectura de un fichero y la realización de un ataque de decodificación sin especific... • http://archives.neohapsis.com/archives/bugtraq/2013-07/0045.html • CWE-255: Credentials Management Errors •