Hitachi Device Manager vulnerabilities
7 known vulnerabilities affecting hitachi/hitachi_device_manager.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2023-49106P3HIGHCVSS 7.5fixed in 8.8.5-042024-01-16
CVE-2023-49106 [HIGH] CWE-549 CVE-2023-49106: Missing Password Field Masking vulnerability in Hitachi Device Manager on Windows, Linux (Device Man
Missing Password Field Masking vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Agent component).This issue affects Hitachi Device Manager: before 8.8.5-04.
nvd
CVE-2023-34143P3HIGHCVSS 8.1fixed in 8.8.5-022023-07-18
CVE-2023-34143 [HIGH] CWE-297 CVE-2023-34143: Improper Validation of Certificate with Host Mismatch vulnerability in Hitachi Device Manager on Win
Improper Validation of Certificate with Host Mismatch vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Server, Device Manager Agent, Host Data Collector components) allows Man in the Middle Attack.This issue affects Hitachi Device Manager: before 8.8.5-02.
nvd
CVE-2020-36695P3HIGHCVSS 7.8fixed in 8.8.5-022023-07-18
CVE-2020-36695 [HIGH] CWE-276 CVE-2020-36695: Incorrect Default Permissions vulnerability in Hitachi Device Manager on Linux (Device Manager Serve
Incorrect Default Permissions vulnerability in Hitachi Device Manager on Linux (Device Manager Server component), Hitachi Tiered Storage Manager on Linux, Hitachi Replication Manager on Linux, Hitachi Tuning Manager on Linux (Hitachi Tuning Manager server, Hitachi Tuning Manager - Agent for RAID, Hitachi Tuning Manager - Agent for NAS
components), Hi
nvd
CVE-2023-34142P3HIGHCVSS 7.5fixed in 8.8.5-022023-07-18
CVE-2023-34142 [HIGH] CWE-319 CVE-2023-34142: Cleartext Transmission of Sensitive Information vulnerability in Hitachi Device Manager on Windows,
Cleartext Transmission of Sensitive Information vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Server, Device Manager Agent, Host Data Collector components) allows Interception.This issue affects Hitachi Device Manager: before 8.8.5-02.
nvd
CVE-2023-49107P3HIGHCVSS 7.5fixed in 8.8.5-042024-01-16
CVE-2023-49107 [HIGH] CWE-209 CVE-2023-49107: Generation of Error Message Containing Sensitive Information vulnerability in Hitachi Device Manager
Generation of Error Message Containing Sensitive Information vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Agent modules).This issue affects Hitachi Device Manager: before 8.8.5-04.
nvd
CVE-2024-5963P4MEDIUMCVSS 6.7fixed in 8.8.7-002024-08-06
CVE-2024-5963 [MEDIUM] CWE-428 CVE-2024-5963: Unquoted Executable Path vulnerability in Hitachi Device Manager on Windows (Device Manager Server c
Unquoted Executable Path vulnerability in Hitachi Device Manager on Windows (Device Manager Server component).This issue affects Hitachi Device Manager: before 8.8.7-00.
nvd
CVE-2025-5781P4MEDIUMCVSS 5.2≥ 8.4.1-00, < 8.6.5-002026-02-25
CVE-2025-5781 [MEDIUM] CWE-532 CVE-2025-5781: Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configur
Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session Hijacking.This issue affects Hitachi Ops Center API Configuration Manager: from 10.0.0-00 before 11.0.5-00; Hitachi Configuration Manager: from 8.5.1-00 before 11.0.5-00; Hitachi Device Manager: from
nvd