Design/Logic Flaw

2020-02-1416:15:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.7%

JSON

A vulnerability in Hitachi Command Suite prior to 8.6.2-00, Hitachi Automation Director prior to 8.6.2-00 and Hitachi Infrastructure Analytics Advisor prior to 4.2.0-00 allow authenticated remote users to load an arbitrary Cascading Style Sheets (CSS) token sequence. Hitachi Command Suite includes Hitachi Device Manager, Hitachi Tiered Storage Manager, Hitachi Replication Manager, Hitachi Tuning Manager, Hitachi Global Link Manager and Hitachi Compute Systems Manager.

CPENameOperatorVersion
automation_directoreq< 8.6.2-0
compute_systems_managereq< 8.6.2-0
device_managereq< 8.6.2-0
global_link_managereq< 8.6.2-0
infrastructure_analytics_advisoreq< 4.2.0-0
replication_managereq< 8.6.2-0
tiered_storage_managereq< 8.6.2-0
tuning_managereq< 8.6.2-0

Name	Operator	Version
automation_director	eq	< 8.6.2-0
compute_systems_manager	eq	< 8.6.2-0
device_manager	eq	< 8.6.2-0
global_link_manager	eq	< 8.6.2-0
infrastructure_analytics_advisor	eq	< 4.2.0-0
replication_manager	eq	< 8.6.2-0
tiered_storage_manager	eq	< 8.6.2-0
tuning_manager	eq	< 8.6.2-0