Sign-up

ID

VAR-201412-0687


TITLE

Multiple Vulnerabilities in JP1/Cm2/Network Node Manager i

Trust: 0.8

sources: JVNDB: JVNDB-2014-005987

DESCRIPTION

JP1/Cm2/Network Node Manager i contains cross-site scripting and execution of arbitrary code vulnerabilities.An attacker could inject arbitrary web script and execute arbitrary code.

Trust: 0.8

sources: JVNDB: JVNDB-2014-005987

AFFECTED PRODUCTS

vendor:hitachimodel:jp1/cm2/network node managerscope:eqversion:i

Trust: 0.8

vendor:hitachimodel:jp1/cm2/network node managerscope:eqversion:i advanced

Trust: 0.8

sources: JVNDB: JVNDB-2014-005987

CVSS

SEVERITY

CVSSV2

CVSSV3

VENDOR: JVNDB-2014-005987
value: HIGH

Trust: 0.8

VENDOR: JVNDB-2014-005987
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

sources: JVNDB: JVNDB-2014-005987

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 0.8

sources: JVNDB: JVNDB-2014-005987

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2014-005987

PATCH
title:HS14-025url:http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs14-025/index.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2014-005987

EXTERNAL IDS
db:JVNDBid:JVNDB-2014-005987
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2014-005987

SOURCES
db:JVNDBid:JVNDB-2014-005987

LAST UPDATE DATE
2022-05-04T10:12:33.077000+00:00

SOURCES UPDATE DATE
db:JVNDBid:JVNDB-2014-005987date:2016-02-26T00:00:00

SOURCES RELEASE DATE
db:JVNDBid:JVNDB-2014-005987date:2014-12-16T00:00:00