Hitachi It Operations Director vulnerabilities
6 known vulnerabilities affecting hitachi/it_operations_director.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2021-29644P2CRITICALCVSS 9.8≥ 02-50, ≤ 02-50-07≥ 03-00, ≤ 03-00-12+2 more2021-10-12
CVE-2021-29644 [CRITICAL] CWE-190 CVE-2021-29644: Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 contains a remote code execution vulnerabilit
Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 contains a remote code execution vulnerability because of an Integer Overflow. An attacker with network access to port 31016 may exploit this issue to execute code with unrestricted privileges on the underlying OS.
nvd
CVE-2013-4697P3CRITICALCVSS 9.0v02-50v02-50-01+9 more2013-07-31
CVE-2013-4697 [CRITICAL] CVE-2013-4697: Multiple unspecified vulnerabilities in Hitachi JP1/IT Desktop Management - Manager 09-50 through 09
Multiple unspecified vulnerabilities in Hitachi JP1/IT Desktop Management - Manager 09-50 through 09-50-03, 09-51 through 09-51-05, 10-00 through 10-00-02, and 10-01 through 10-01-02; Hitachi Job Management Partner 1/IT Desktop Management - Manager 09-50 through 09-50-03 and 10-01; and Hitachi IT Operations Director 02-50 through 02-50-07, 03-00 through 03-
nvd
CVE-2021-29645P3HIGHCVSS 7.8≥ 02-50, ≤ 02-50-07≥ 03-00, ≤ 03-00-12+2 more2021-10-12
CVE-2021-29645 [HIGH] CVE-2021-29645: Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 calls the SendMessageTimeoutW API with arbitr
Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 calls the SendMessageTimeoutW API with arbitrary arguments via a local pipe, leading to a local privilege escalation vulnerability. An attacker who exploits this issue could execute arbitrary code on the local system.
nvd
CVE-2012-4276P4MEDIUMCVSS 5.0v02-50-01v02-50-06+4 more2012-08-13
CVE-2012-4276 [MEDIUM] CVE-2012-4276: Unspecified vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07, 03-00 before
Unspecified vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07, 03-00 before 03-00-08 allows attackers to cause a denial of service via unknown attack vectors.
nvd
CVE-2012-0919P4MEDIUMCVSS 4.3v02-50-01v02-50-06+3 more2012-01-24
CVE-2012-0919 [MEDIUM] CWE-79 CVE-2012-0919: Cross-site scripting (XSS) vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07
Cross-site scripting (XSS) vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07, 03-00 through 03-00-04, and possibly other versions before 03-00-06, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd
CVE-2012-4275P4MEDIUMCVSS 4.3v02-50-01v02-50-06+4 more2012-08-13
CVE-2012-4275 [MEDIUM] CWE-79 CVE-2012-4275: Cross-site scripting (XSS) vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07
Cross-site scripting (XSS) vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07, 03-00 before 03-00-08 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd