JVNDB-2017-006769

[Japanese]
JVNDB-2017-006769
Denial-of-service (DoS) Vulnerability in JP1 and Hitachi IT Operations Director
Overview
A vulnerability to denial-of-service attacks was found in JP1 and Hitachi IT Operations Director.
CVSS Severity (What is CVSS?)
CVSS V3 Severity: Base Metrics 5.3 (Medium) [Vendor Score] Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality Impact: None Integrity Impact: None Availability Impact: Low CVSS V2 Severity: Base Metrics 5.0 (Medium) [Vendor Score] Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
Affected Products

Hitachi, Ltd Hitachi IT Operations Director Job Management Partner 1/Asset Information Manager Job Management Partner 1/Asset Information Manager Embedded RDB Edition Job Management Partner 1/Automatic Job Management System 2 - Advanced Manager Job Management Partner 1/Automatic Job Management System 2 - Manager Job Management Partner 1/Automatic Job Management System 3 - Manager Job Management Partner 1/Integrated Management - Manager Job Management Partner 1/Integrated Management - Service Support Advanced Edition Job Management Partner 1/Integrated Management - Service Support Job Management Partner 1/IT Desktop Management 2 - Manager Job Management Partner 1/IT Desktop Management 2 - Smart Device Manager Job Management Partner 1/IT Desktop Management - Manager Job Management Partner 1/IT Service Level Management - Manager Job Management Partner 1/Software Distribution Manager Job Management Partner 1/Software Distribution Manager Embedded RDB Edition JP1/Automatic Job Management System 2 - Advanced Manager JP1/Automatic Job Management System 2 - Manager JP1/Automatic Job Management System 3 - Manager JP1/Automatic Operation JP1/Integrated Management - Manager JP1/Integrated Management - Service Support JP1/Integrated Management - Service Support Advanced Edition JP1/Integrated Management - Service Support Starter Edition JP1/Integrated Manager - Incident Master JP1/IT Desktop Management 2 - Manager JP1/IT Desktop Management 2 - Operations Director JP1/IT Desktop Management 2 - Smart Device Manager JP1/IT Desktop Management - Manager JP1/IT Service Level Management - Manager JP1/NETM/Asset Information Manager JP1/NETM/Asset Information Manager Embedded RDB Edition JP1/NETM/Asset Information Manager for Blade PC JP1/NETM/DM Manager JP1/NETM/DM Manager Embedded RDB Edition JP1/Operations Analytics JP1/Performance Analysis - Manager JP1/Performance Management - Analysis Manager JP1/ServerConductor/Control Manager JP1/Service Level Management - Manager JP1/Service Support JP1/Service Support Starter Edition
Please refer to Vendor Information for more details.
Impact
An attacker may conduct denial-of-service attacks.
Solution
Please refer to the 'Vendor Information' section for the official countermeasure and take appropriate action.
Vendor Information
Hitachi, Ltd Hitachi Software Vulnerability Information : hitachi-sec-2017-122
CWE (What is CWE?)
No Mapping(CWE-noinfo) [IPA Evaluation]
CVE (What is CVE?)

References

Revision History
[2017/09/04] Web page was published [2017/09/05] CVSS Severity was modified


Date Public	2017/09/01
Date First Published	2017/09/04
Date Last Updated	2017/09/05

Denial-of-service (DoS) Vulnerability in JP1 and Hitachi IT Operations Director