CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2023-30469 – Reflrected Cross Site Scripting Vulnerability in Hitachi Ops Center Analyzer
https://notcve.org/view.php?id=CVE-2023-30469
Cross-site Scripting vulnerability in Hitachi Ops Center Analyzer (Hitachi Ops Center Analyzer detail view component) allows Reflected XSS.This issue affects Hitachi Ops Center Analyzer: from 10.9.1-00 before 10.9.2-00. • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-115/index.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2020-36652 – File and Directory Permissions Vulnerability in Hitachi Automation Director, Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center
https://notcve.org/view.php?id=CVE-2020-36652
Incorrect Default Permissions vulnerability in Hitachi Automation Director on Linux, Hitachi Infrastructure Analytics Advisor on Linux (Hitachi Infrastructure Analytics Advisor, Analytics probe server components), Hitachi Ops Center Automator on Linux, Hitachi Ops Center Analyzer on Linux (Hitachi Ops Center Analyzer, Analyzer probe server components), Hitachi Ops Center Viewpoint on Linux (Viewpoint RAID Agent component) allows local users to read and write specific files. This issue affects Hitachi Automation Director: from 8.2.0-00 through 10.6.1-00; Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.0.0-00; Hitachi Ops Center Automator: before 10.9.1-00; Hitachi Ops Center Analyzer: before 10.9.1-00; Hitachi Ops Center Viewpoint: before 10.9.1-00. • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-106/index.html • CWE-276: Incorrect Default Permissions •
CVSS: 8.6EPSS: 0%CPEs: 3EXPL: 0CVE-2022-4895 – Man-in-the-middle attack Vulnerability in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer
https://notcve.org/view.php?id=CVE-2022-4895
Improper Certificate Validation vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Analyzer probe component) allows Man in the Middle Attack.This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.1-00. • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-105/index.html • CWE-295: Improper Certificate Validation •
CVSS: 7.3EPSS: 0%CPEs: 2EXPL: 0CVE-2022-3884 – Directory Permission Vulnerability in Hitachi Ops Center Analyzer
https://notcve.org/view.php?id=CVE-2022-3884
Incorrect Default Permissions vulnerability in Hitachi Ops Center Analyzer on Windows (Hitachi Ops Center Analyzer RAID Agent component) allows local users to read and write specific files.This issue affects Hitachi Ops Center Analyzer: from 10.9.0-00 before 10.9.0-01. • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-105/index.html • CWE-276: Incorrect Default Permissions •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-41553 – Information Exposure Vulnerability in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer
https://notcve.org/view.php?id=CVE-2022-41553
Insertion of Sensitive Information into Temporary File vulnerability in Hitachi Infrastructure Analytics Advisor on Linux (Analytics probe component), Hitachi Ops Center Analyzer on Linux (Hitachi Ops Center Analyzer probe component) allows local users to gain sensitive information. This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.4.0-00; Hitachi Ops Center Analyzer: from 10.0.0-00 before 10.9.0-00. Vulnerabilidad de inserción de información confidencial en un archivo temporal en Hitachi Infrastructure Analytics Advisor en Linux (componente de sonda Analytics), Hitachi Ops Center Analyzer en Linux (componente de sonda Hitachi Ops Center Analyzer) permite a los usuarios locales obtener información confidencial. Este problema afecta a Hitachi Infrastructure Analytics Advisor: desde 2.0.0-00 hasta 4.4.0-00; Analizador de Hitachi Ops Center: desde 10.0.0-00 antes de 10.9.0-00. • https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2022-134/index.html • CWE-532: Insertion of Sensitive Information into Log File •