Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-1565

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2015-1565
Last Modified 09 Feb 2015 02:29:06
Published 09 Feb 2015 12:59:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-1565

Summary

Cross-site scripting (XSS) vulnerability in the online help in Hitachi Device Manager, Tiered Storage Manager, Replication Manager, and Global Link Manager before 8.1.2-00, and Compute Systems Manager before 7.6.1-08 and 8.x before 8.1.2-00, as used in Hitachi Command Suite, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Systems

Application

  • Hitachi Compute Systems Manager 7.6.1

  • Hitachi Compute Systems Manager 8.0.0

  • Hitachi Compute Systems Manager 8.1.0

  • Hitachi Compute Systems Manager 8.1.1

  • Hitachi Device Manager 8.1.1

  • Hitachi Global Link Manager 8.1.1

  • Hitachi Replication Manager 8.1.1

  • Hitachi Tiered Storage Manager 8.1.1


References

CONFIRM - http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS15-001/index.html

SECUNIA - 62584

SECUNIA - 62579


Last Updated: 27 May 2016 11:07:44