JVNDB-2015-001268

[Japanese]
JVNDB-2015-001268
Cross-site Scripting Vulnerability in Hitachi Command Suite Products
Overview
The online help of Hitachi Command Suite Products contains a cross-site scripting vulnerability.
CVSS Severity (What is CVSS?)
CVSS V2 Severity: Base Metrics 4.3 (Medium) [Vendor Score] Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
Affected Products

Hitachi, Ltd Hitachi Compute Systems Manager Software Hitachi Device Manager Software Hitachi Global Link Manager Software Hitachi Replication Manager Software Hitachi Tiered Storage Manager Software
Please refer to HS15-001 provided by Hitachi for more details.
Impact
A remote attacker can exploit this vulnerability to execute malicious scripts.
Solution
Please refer to the 'Vendor Information' section for the official countermeasure and take appropriate action.
Vendor Information
Hitachi, Ltd Hitachi Software Vulnerability Information : HS15-001
CWE (What is CWE?)
Cross-site Scripting(CWE-79) [NVD Evaluation]
CVE (What is CVE?)
CVE-2015-1565
References
National Vulnerability Database (NVD) : CVE-2015-1565
Revision History
[2015/02/16] Web page was published [2015/03/03] CVSS Severity was modified

Cross-site Scripting Vulnerability in Hitachi Command Suite Products