Sign-up

ID

VAR-200712-0453


TITLE

JP1/Cm2/Network Node Manager Vulnerable to cross-site scripting

Trust: 0.8

sources: JVNDB: JVNDB-2007-000810

DESCRIPTION

Provided by Hitachi JP1/Cm2/Network Node Manager (NNM) Contains a cross-site scripting vulnerability. Provided by Hitachi JP1/Cm2/Network Node Manager (NNM) Is software that can centrally manage network configurations and failures. this NNM Contains a cross-site scripting vulnerability. There are several affected systems. For details, check the information provided by the vendor. This vulnerability information is based on the Information Security Early Warning Partnership. IPA To report to JPCERT/CC Has coordinated with the vendor. Reporter: NTT Data Security Corporation 辻 Nobuhiro MrAn arbitrary script may be executed on the user's web browser.

Trust: 0.8

sources: JVNDB: JVNDB-2007-000810

AFFECTED PRODUCTS

vendor:hitachimodel:jp1/cm2/network node managerscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2007-000810

CVSS

SEVERITY

CVSSV2

CVSSV3

IPA: JVNDB-2007-000810
value: MEDIUM

Trust: 0.8

IPA: JVNDB-2007-000810
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

sources: JVNDB: JVNDB-2007-000810

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2007-000810

PATCH
title:HS07-040url:http://www.hitachi-support.com/security_e/vuls_e/hs07-040_e/index-e.html
Trust: 0.8
title:HS07-040url:http://www.hitachi-support.com/security/vuls/hs07-040/index.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2007-000810

EXTERNAL IDS
db:JVNDBid:JVNDB-2007-000810
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2007-000810

REFERENCES
url:http://jvn.jp/jp/jvn%2352846259/index.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2007-000810

SOURCES
db:JVNDBid:JVNDB-2007-000810

LAST UPDATE DATE
2022-05-04T09:19:57.162000+00:00

SOURCES UPDATE DATE
db:JVNDBid:JVNDB-2007-000810date:2007-12-13T00:00:00

SOURCES RELEASE DATE
db:JVNDBid:JVNDB-2007-000810date:2007-12-13T00:00:00