threat
engine
.sh
Back
·
··:··
Home
/
Product
/
hitachi device manager
Product
hitachi device manager
24 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-5781
>= 8.4.1-00 and < 8.6.5-00
Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device
5.2
MEDIUM
CVE-2025-30025
< 5.32.137
The communication protocol used between the server process and the service control had a flaw that could lead to a local privilege
7.8
HIGH
CVE-2025-30024
< 5.32.137
The communication protocol used between client and server had a flaw that could be leveraged to execute a man in the middle attack
6.8
MEDIUM
CVE-2025-30023
< 5.32.137
The communication protocol used between client and server had a flaw that could lead to an authenticated user performing a remote
9.0
CRITICAL
CVE-2023-49107
< 8.8.5-04
Generation of Error Message Containing Sensitive Information vulnerability in Hitachi Device Manager on Windows, Linux (Device Man
5.3
MEDIUM
CVE-2023-49106
< 8.8.5-04
Missing Password Field Masking vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Agent component).This iss
4.6
MEDIUM
CVE-2023-50916
< 3.1.1213.0
Kyocera Device Manager before 3.1.1213.0 allows NTLM credential exposure during UNC path authentication via a crafted change from
7.2
HIGH
CVE-2023-34143
< 8.8.5-02
Improper Validation of Certificate with Host Mismatch vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Se
5.6
MEDIUM
CVE-2023-34142
< 8.8.5-02
Cleartext Transmission of Sensitive Information vulnerability in Hitachi Device Manager on Windows, Linux (Device Manager Server,
9.0
CRITICAL
CVE-2020-36695
< 8.8.5-02
Incorrect Default Permissions vulnerability in Hitachi Device Manager on Linux (Device Manager Server component), Hitachi Tiered S
6.6
MEDIUM
CVE-2021-31989
>= 5.00.010 and <= 5.16.063
A user with permission to log on to the machine hosting the AXIS Device Manager client could under certain conditions extract a me
5.3
MEDIUM
CVE-2018-21033
< 8.6.2-00
A vulnerability in Hitachi Command Suite prior to 8.6.2-00, Hitachi Automation Director prior to 8.6.2-00 and Hitachi Infrastructu
6.5
MEDIUM
CVE-2018-21032
>= 7.0.0-00 and < 8.7.1-00
A vulnerability in Hitachi Command Suite prior to 8.7.1-00 and Hitachi Automation Director prior to 8.5.0-00 allow authenticated r
4.3
MEDIUM
CVE-2019-17360
>= 7.0.0-00 and < 8.7.0-00
A vulnerability in Hitachi Command Suite 7.x and 8.x before 8.7.0-00 allows an unauthenticated remote user to trigger a denial of
7.5
HIGH
CVE-2018-21026
>= 7.0.0 and < 8.6.5-00
A vulnerability in Hitachi Command Suite 7.x and 8.x before 8.6.5-00 allows an unauthenticated remote user to read internal inform
7.5
HIGH
CVE-2018-11748
< 2.7.0
Previous releases of the Puppet device_manager module creates configuration files containing credentials that are world readable.
7.8
HIGH
CVE-2018-14735
>= 7.0.0-00 and < 8.6.1-02
An Information Exposure issue was discovered in Hitachi Command Suite 8.5.3. A remote attacker may be able to exploit a flaw in th
7.5
HIGH
CVE-2017-9298
<= 8.5.2
Cross-site scripting vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Replication Manager before 8.5.2-00 allow
5.4
MEDIUM
CVE-2017-9297
<= 8.5.2
Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to redirect users to arbitrary web s
6.1
MEDIUM
CVE-2017-9296
<= 8.5.2
Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Tuning Manager before 8.5.2-00 allows remote att
6.1
MEDIUM
CVE-2017-9295
<= 8.5.2
XXE vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Replication Manager before 8.5.2-00 allows authenticated r
6.5
MEDIUM
CVE-2017-9294
<= 8.5.2
RMI vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to execute internal commands without authentic
9.8
CRITICAL
CVE-2015-1565
<= 8.1.1
Cross-site scripting (XSS) vulnerability in the online help in Hitachi Device Manager, Tiered Storage Manager, Replication Manager
CVE-2010-4741
all versions
Stack-based buffer overflow in MDMUtil.dll in MDMTool.exe in MDM Tool before 2.3 in Moxa Device Manager allows remote MDM Gateways
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin