[Japanese]

JVNDB-2021-001021

Improper access control vulnerability in JP1/IT Desktop Management 2 - Manager and JP1/NETM/Asset Information Manager

Overview

The JP1/IT Desktop Management 2 - Manager and JP1/NETM/Asset Information Manager contains improper access control vulnerability.
CVSS Severity (What is CVSS?)

Affected Products


Hitachi, Ltd
  • Job Management Partner 1/Asset Information Manager
  • Job Management Partner 1/Asset Information Manager Embedded RDB Edition
  • Job Management Partner 1/IT Desktop Management 2 - Manager
  • Job Management Partner 1/Software Distribution Manager (Asset Information Manager Subset)
  • JP1/IT Desktop Management 2 - Manager
  • JP1/NETM/Asset Information Manager
  • JP1/NETM/Asset Information Manager Embedded RDB Edition
  • JP1/NETM/Asset Information Manager for Blade PC
  • JP1/NETM/Asset Information Manager Smart Edition
  • JP1/NETM/DM Manager (Asset Information Manager Limited)

Please refer to Vendor Information for more details.
Impact

Regarding the impact of the vulnerability, please refer to the vendor advisory.
Solution

Please refer to the 'Vendor Information' section for the official countermeasure and take appropriate action.
Vendor Information

Hitachi, Ltd
CWE (What is CWE?)

  1. No Mapping(CWE-noinfo) [IPA Evaluation]
CVE (What is CVE?)

References

Revision History

  • [2021/02/09]
      Web page was published

Date Public2021/02/05
Date First Published2021/02/09
Date Last Updated2021/02/09