cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score CVE-2024-5828,https://securityvulnerability.io/vulnerability/CVE-2024-5828,Hitachi Tuning Manager Injection Vulnerability Allows Code Injection,"An Expression Language Injection vulnerability exists in Hitachi Tuning Manager, which operates across Windows, Linux, and Solaris platforms. This vulnerability can allow attackers to conduct code injection attacks, compromising the integrity of the application and potentially leading to unauthorized access or manipulation of data. The affected versions prior to 8.8.7-00 demonstrate insufficient validation of user input, enabling exploitation through crafted expressions. Organizations utilizing Hitachi Tuning Manager are urged to assess their environments for this vulnerability and apply appropriate security patches to mitigate risks and protect sensitive information.",Hitachi,Hitachi Tuning Manager,9.8,CRITICAL,0.001290000043809414,false,false,false,false,,false,false,2024-08-06T02:21:38.553Z,0 CVE-2023-6457,https://securityvulnerability.io/vulnerability/CVE-2023-6457,File and Directory Permission Vulnerability in Hitachi Tuning Manager,"The Hitachi Tuning Manager for Windows contains an Incorrect Default Permissions vulnerability within its server component that could allow local users to read and write to certain files unchecked. This vulnerability raises significant security concerns, as it can lead to unauthorized data access and potential system compromises. Affected versions include those prior to 8.8.5-04. Users and administrators are urged to apply the necessary updates to mitigate risks associated with this safeguard lapse.",Hitachi,Hitachi Tuning Manager,7.1,HIGH,0.0004199999966658652,false,false,false,false,,false,false,2024-01-16T01:00:33.447Z,0 CVE-2020-36695,https://securityvulnerability.io/vulnerability/CVE-2020-36695,File and Directory Permission Vulnerability in Hitachi Command Suite,"Incorrect Default Permissions vulnerability in Hitachi Device Manager on Linux (Device Manager Server component), Hitachi Tiered Storage Manager on Linux, Hitachi Replication Manager on Linux, Hitachi Tuning Manager on Linux (Hitachi Tuning Manager server, Hitachi Tuning Manager - Agent for RAID, Hitachi Tuning Manager - Agent for NAS components), Hitachi Compute Systems Manager on Linux allows File Manipulation.This issue affects Hitachi Device Manager: before 8.8.5-02; Hitachi Tiered Storage Manager: before 8.8.5-02; Hitachi Replication Manager: before 8.8.5-02; Hitachi Tuning Manager: before 8.8.5-02; Hitachi Compute Systems Manager: before 8.8.3-08. ",Hitachi,"Hitachi Device Manager,Hitachi Tiered Storage Manager,Hitachi Replication Manager,Hitachi Tuning Manager,Hitachi Compute Systems Manager",6.6,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2023-07-18T01:59:31.566Z,0 CVE-2020-36611,https://securityvulnerability.io/vulnerability/CVE-2020-36611,File and Directory Permission Vulnerability in Hitachi Tuning Manager,"Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Linux (Hitachi Tuning Manager server, Hitachi Tuning Manager - Agent for RAID, Hitachi Tuning Manager - Agent for NAS, Hitachi Tuning Manager - Agent for SAN Switch components) allows local users to read and write specific files.This issue affects Hitachi Tuning Manager: before 8.8.5-00. ",Hitachi,Hitachi Tuning Manager,6.6,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2023-01-17T01:21:48.024Z,0