Hitachi Vulnérabilités

Chronologie

Taper

Produit

Hitachi Vantara Pentaho Business Analytics Server19
Hitachi Device Manager10
Hitachi Energy RTU5009
Hitachi Vantara Pentaho9
Hitachi Ops Center Analyzer8

Contre-mesures

Official Fix128
Temporary Fix0
Workaround1
Unavailable0
Not Defined122

Exploitabilité

High6
Functional0
Proof-of-Concept56
Unproven7
Not Defined182

Vecteur d'accès

Not Defined0
Physical2
Local26
Adjacent5
Network218

Authentification

Not Defined0
High16
Low85
None150

Interaction de l'utilisateur

Not Defined0
Required48
None203

C3BM Index

CVSSv3 Base

≤10
≤20
≤33
≤413
≤543
≤678
≤745
≤842
≤916
≤1011

CVSSv3 Temp

≤10
≤20
≤33
≤414
≤570
≤656
≤757
≤826
≤919
≤106

VulDB

≤10
≤21
≤310
≤433
≤550
≤672
≤722
≤844
≤99
≤1010

NVD

≤10
≤20
≤30
≤40
≤57
≤613
≤715
≤828
≤912
≤106

CNA

≤10
≤20
≤32
≤46
≤510
≤625
≤715
≤835
≤921
≤104

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k41
<2k148
<5k62
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k232
<2k16
<5k3
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (193): ABB Power Grids Ellipse Enterprise Asset Management (2), Application Server Help (1), Asset Suite EAM (1), Automatic Job Management System (1), Automation Director (2), Business Logic (5), COBOL2002 Net Developer (1), Cm2 (2), Cm2-network Node Manager (1), Cobol GUI Option (1), Command Suite (4), Compute Systems Manager (1), Content Platform (1), Content Platform Anywhere (1), CoreTec 4 (3), Cosminexus Agent (1), Cosminexus Application Server (2), Cosminexus Collaboration Portal (2), Cosminexus Component Container (1), Cosminexus Developer (1), Cosminexus Enterprise (2), Cosminexus Portal Framework (1), Cosminexus_application_server_standard (2), Counterparty Settlement Billing (1), Counterparty Settlement and Billing (1), DABroker (1), DeploymentManager (1), Deployment Manager (1), Device Manager (10), EH-VIEW (4), EUR Form Service (1), EUR Print Manager (1), EUR Viewer (1), Energy Counterparty Settlement and Billing (1), Energy Retail Operations (1), FORXMAN-UN (1), FOX61x (2), FT (1), GMS600 (1), Global Link Manager (2), Gr2000 (2), Groupmax Address Server (1), Groupmax Collaboration Portal (1), Groupmax Collaboration Web Client (5), Groupmax Groupware Server (2), Groupmax Mail SMTP (1), Groupmax Mail Security Option (1), Groupmax Mobile Option (1), Groupmax Workflow To Development Kit For Active Server Pages (1), Groupmax World Wide Web (1), Groupmax World Wide Web Desktop (2), Groupmax World Wide Web Scheduler (1), HITSENSER3 (1), HITSENSER Data Mart Server (1), HNAS (1), HiRDB Server (1), Hirdb Parallel Server (1), Hitachi Directory Server 2 (2), ID Bravura Security Fabric (1), IEC 61850 (1), IP5000 VOIP WIFI Phone (5), ISnex HC-IP9100HD (2), IT Operations Analyzer (1), IT Operations Director (4), Infrastructure Analytics Advisor (5), JP1 (4), JP1 Automatic Operation (1), JP1 IT Desktop Management 2 Agent (2), JP1-HiCommand Suite (1), JP1-Performance Management (1), Jp1 Cm2 Network Node Manager (1), Jp1 File Transmission Server (3), Jp1 Integrated Management Service Support (1), Jp1 P-1j41-9471 (2), Jp1-cm2-hierarchical Viewer (1), Jp1-cm2-network Node Manager 250 (1), Jp1-hicommand Tiered Storage Manager (1), Jp1-hicommand Tuning Manager (1), Jp1-netm-dm Manager (1), Jpi Hibun Advanced Edition Server (1), Jpi Netsight Ii Port Discovery Standard (1), Jpi Performance Management (1), LinkOne (4), Lumada APM (1), MACH SCM (2), MACH System Software (2), MicroSCADA Pro (1), MicroSCADA Pro SYS600 (2), MicroSCADA X SYS600 (6), Network Node Manager (2), OSAS (1), Ops Center Administrator (1), Ops Center Analyzer (8), Ops Center Automator (1), Ops Center Common Services (1), Ops Center Viewpoint (2), PCM600 (1), PWC600 (1), Pentaho Business Intelligence Server (4), Pentaho Data Integration & Analytics (2), Power Grids Retail Operations (1), Power Grids eSOMS (1), Probe Server (1), RAID Manager Storage Replication Adapter (2), RTU500 (10), Relion 650 (4), Relion670 (1), Relion 670 (4), Replication Manager (4), Retail Operations (1), SAM600-IO (3), SDM600 (5), ServerConductor (2), Sewb3 Mi-platform (1), Storage Plug-in for VMware vCenter (4), System Management Unit (1), TP1 (1), TPBroker (1), TPBroker Object Transaction Monitor (1), TXpert Hub CoreTec 4 (1), Tiered Storage Manager (2), Tp1 Net Osi-tp-extended (1), Tpi Server Base (2), Tuning Manager (6), UNEM (1), UNEM R9C (5), UNEM R10C (5), UNEM R11A (5), UNEM R11B (5), UNEM R14A (5), UNEM R14B (5), UNEM R15A (5), UNEM R15B (5), UNEM R16A (5), Ucosminexus Application Server Standard (2), Ucosminexus Client (1), Ucosminexus Developer (1), Ucosminexus Developer Standard (2), Ucosminexus Service Platform (1), Unified Storage VM (1), Vantara Pentaho (9), Vantara Pentaho BA (1), Vantara Pentaho Business Analytics (2), Vantara Pentaho Business Analytics Server (19), Virtual File Platform (1), Virtual Storage Platform (1), Virtual Storage Platform 5100 (1), Virtual Storage Platform 5100H (1), Virtual Storage Platform 5200 (1), Virtual Storage Platform 5200H (1), Virtual Storage Platform 5500 (1), Virtual Storage Platform 5500H (1), Virtual Storage Platform 5600 (1), Virtual Storage Platform 5600H (1), Virtual Storage Platform E390 (1), Virtual Storage Platform E390H (1), Virtual Storage Platform E590 (1), Virtual Storage Platform E590H (1), Virtual Storage Platform E790 (1), Virtual Storage Platform E790H (1), Virtual Storage Platform E990 (1), Virtual Storage Platform E1090 (1), Virtual Storage Platform E1090H (1), Virtual Storage Platform F350 (1), Virtual Storage Platform F370 (1), Virtual Storage Platform F400 (1), Virtual Storage Platform F600 (1), Virtual Storage Platform F700 (1), Virtual Storage Platform F800 (1), Virtual Storage Platform F900 (1), Virtual Storage Platform F1500 (1), Virtual Storage Platform G100 (1), Virtual Storage Platform G130 (1), Virtual Storage Platform G150 (1), Virtual Storage Platform G200 (1), Virtual Storage Platform G350 (1), Virtual Storage Platform G370 (1), Virtual Storage Platform G400 (1), Virtual Storage Platform G600 (1), Virtual Storage Platform G700 (1), Virtual Storage Platform G800 (1), Virtual Storage Platform G900 (1), Virtual Storage Platform G1000 (1), Virtual Storage Platform G1500 (1), Virtual Storage Platform VP9500 (1), W (1), Web Page Generator Enterprise (3), Web Server (1), XCM20 (2), Xfit S Zengin (1), Xp W (1), eSOMS (4), uCosminexus Developer (1)

PubliéBaseTempVulnérabilitéProdExpConCTIEPSSCVE
27/03/20246.46.4Hitachi Energy RTU500 STB Language File elévation de privilègesInconnueNot DefinedNot Defined0.000.00043CVE-2024-1531
27/03/20245.35.2Hitachi Energy Asset Suite EAM REST Service authentification faibleInconnueNot DefinedOfficial Fix0.040.00043CVE-2024-2244
27/03/20244.74.7Hitachi Energy RTU500 STB Language File elévation de privilègesInconnueNot DefinedNot Defined0.070.00043CVE-2024-1532
27/03/20247.57.5Hitachi Energy MACH SCM LINQ Query elévation de privilègesSupply Chain Management SoftwareNot DefinedNot Defined0.000.00043CVE-2024-0400
27/03/20246.26.2Hitachi Energy MACH SCM LINQ Query elévation de privilègesSupply Chain Management SoftwareNot DefinedNot Defined0.000.00043CVE-2024-2097
25/03/20247.17.0Hitachi Virtual Storage Platform divulgation de l'informationInconnueNot DefinedOfficial Fix0.000.00043CVE-2022-36407
12/03/20244.04.0Hitachi Cosminexus Component Container divulgation de l'informationVirtualization SoftwareNot DefinedOfficial Fix0.030.00043CVE-2023-6814
29/02/20245.35.2Hitachi Vantara Pentaho Data Integration & Analytics Tomcat divulgation de l'informationInconnueNot DefinedOfficial Fix0.020.00043CVE-2023-5617
20/02/20246.96.8Hitachi Global Link Manager Expression Language Privilege EscalationInconnueNot DefinedOfficial Fix0.060.00061CVE-2024-0715
30/01/20246.86.8Hitachi Storage Plug-in for VMware vCenter elévation de privilègesServer Management SoftwareNot DefinedNot Defined0.020.00042CVE-2024-21840
16/01/20244.84.8Hitachi Device Manager Agent Component divulgation de l'informationInconnueNot DefinedOfficial Fix0.040.00087CVE-2023-49106
16/01/20246.36.3Hitachi Tuning Manager Server elévation de privilègesInconnueNot DefinedOfficial Fix0.030.00042CVE-2023-6457
16/01/20246.06.0Hitachi Device Manager Agent Module divulgation de l'informationInconnueNot DefinedOfficial Fix0.020.00087CVE-2023-49107
19/12/20236.26.2Hitachi Energy RTU500 Scripting Interface authentification faibleInconnueNot DefinedNot Defined0.000.00048CVE-2023-1514
19/12/20236.46.4Hitachi Energy RTU500 Messages elévation de privilègesInconnueNot DefinedNot Defined0.040.00046CVE-2023-6711
14/12/20235.35.3Hitachi Energy RTU500 cross site scriptingInconnueNot DefinedNot Defined0.000.00046CVE-2023-5769
13/12/20237.97.8Hitachi Vantara Pentaho Data Integration & Analytics JNDI Identifier elévation de privilègesInconnueNot DefinedOfficial Fix0.020.00050CVE-2023-3517
11/12/20236.86.7Hitachi Vantara System Management Unit SMU Configuration Backup elévation de privilègesInconnueNot DefinedOfficial Fix0.040.00743CVE-2023-6538
05/12/20236.56.5Hitachi Vantara HNAS elévation de privilègesInconnueNot DefinedNot Defined0.000.00049CVE-2023-5808
04/12/20235.25.2Hitachi Energy RTU500 APDU Frame Layout dénie de serviceInconnueNot DefinedNot Defined0.020.00046CVE-2023-5768
04/12/20234.84.8Hitachi Energy RTU500 RDT Language File cross site scriptingInconnueNot DefinedNot Defined0.020.00046CVE-2023-5767
01/12/20236.16.1Hitachi Energy Relion670 GOOSE Message dénie de serviceInconnueNot DefinedNot Defined0.000.00046CVE-2023-4518
01/11/20235.35.3Hitachi Energy eSOMS Report Generator divulgation de l'informationInconnueNot DefinedNot Defined0.030.00046CVE-2023-5514
01/11/20235.95.9Hitachi Energy MACH System Software McFeeder Server directory traversalInconnueNot DefinedNot Defined0.040.00046CVE-2023-2621
01/11/20233.23.2Hitachi Energy MACH System Software RPC divulgation de l'informationInconnueNot DefinedNot Defined0.040.00045CVE-2023-2622

226 plus d'entrées ne sont pas affichées

Do you want to use VulDB in your project?

Use the official API to access entries easily!