CVE-2015-1565
Published Feb 9, 2015
Last updated 10 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in the online help in Hitachi Device Manager, Tiered Storage Manager, Replication Manager, and Global Link Manager before 8.1.2-00, and Compute Systems Manager before 7.6.1-08 and 8.x before 8.1.2-00, as used in Hitachi Command Suite, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:hitachi:device_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E9B006A-2774-42F0-ACEC-34773A6B8EA9",
"versionEndIncluding": "8.1.1"
},
{
"criteria": "cpe:2.3:a:hitachi:replication_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8A434911-82C7-43CA-BC4E-62D41B609381",
"versionEndIncluding": "8.1.1"
},
{
"criteria": "cpe:2.3:a:hitachi:tiered_storage_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1957AAA5-ECF9-44DD-854B-BF9234F8D25A",
"versionEndIncluding": "8.1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
},
{
"criteria": "cpe:2.3:o:novell:opensuse:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F9202A2E-9B01-4B25-A576-4689BC2B8D97"
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4CECD221-9715-4ECD-88E5-3252EFCA784F"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:hitachi:compute_systems_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "64AAC464-7F1F-46A4-93DB-6729F6D66EF4",
"versionEndIncluding": "7.6.1"
},
{
"criteria": "cpe:2.3:a:hitachi:compute_systems_manager:8.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "89EAC148-CF60-4A92-89D6-AD5C465D6D6E"
},
{
"criteria": "cpe:2.3:a:hitachi:compute_systems_manager:8.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D8D3D29B-2AE5-4589-A723-C1910FCB01CA"
},
{
"criteria": "cpe:2.3:a:hitachi:compute_systems_manager:8.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5DFBFE4C-C17B-438D-80F5-BF83749C2356"
},
{
"criteria": "cpe:2.3:a:hitachi:global_link_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "43E7D08F-8D86-47A6-B01F-784BC5C686E5",
"versionEndIncluding": "8.1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]