CVE-2014-4189
Severity CVSS v4.0:
Pending analysis
Type:
CWE-79
Cross-Site Scripting (XSS)
Publication date:
17/06/2014
Last modified:
12/04/2025
Description
Cross-site scripting (XSS) vulnerability in Hitachi Tuning Manager before 7.6.1-06 and 8.x before 8.0.0-04 and JP1/Performance Management - Manager Web Option 07-00 through 07-54 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Impact
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:hitachi:jp1\/performance_management-manager_web_option:07-00:*:*:*:*:solaris:*:* | ||
| cpe:2.3:a:hitachi:jp1\/performance_management-manager_web_option:07-00:*:*:*:*:windows:*:* | ||
| cpe:2.3:a:hitachi:jp1\/performance_management-manager_web_option:07-54:*:*:*:*:solaris:*:* | ||
| cpe:2.3:a:hitachi:jp1\/performance_management-manager_web_option:07-54:*:*:*:*:windows:*:* | ||
| cpe:2.3:a:hitachi:tuning_manager:6.0.0:*:*:*:*:solaris:*:* | ||
| cpe:2.3:a:hitachi:tuning_manager:6.0.0:*:*:*:*:windows:*:* | ||
| cpe:2.3:a:hitachi:tuning_manager:7.1.0:*:*:*:*:linux_kernel:*:* | ||
| cpe:2.3:a:hitachi:tuning_manager:7.6.1:*:*:*:*:solaris:*:* | ||
| cpe:2.3:a:hitachi:tuning_manager:7.6.1:05:*:*:*:solaris:*:* | ||
| cpe:2.3:a:hitachi:tuning_manager:8.0.0:*:*:*:*:linux_kernel:*:* | ||
| cpe:2.3:a:hitachi:tuning_manager:8.0.0:*:*:*:*:windows:*:* | ||
| cpe:2.3:a:hitachi:tuning_manager:8.0.0:03:*:*:*:linux_kernel:*:* | ||
| cpe:2.3:a:hitachi:tuning_manager:8.0.0:03:*:*:*:windows:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://secunia.com/advisories/58528
- http://secunia.com/advisories/58899
- http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-013/index.html
- http://www.securityfocus.com/bid/68015
- http://secunia.com/advisories/58528
- http://secunia.com/advisories/58899
- http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-013/index.html
- http://www.securityfocus.com/bid/68015