CVE-2007-3623

Published: Jul 9, 2007Modified: Apr 23, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in the Hitachi JP1/HiCommand Device Manager, Tiered Storage Manager, Replication Monitor, and GlobalLink Availability Manager before 20070528 allows remote attackers to inject arbitrary web script or HTML via the Expect HTTP header.

Affected (21)

Products: Hitachi: Jp1 Hicommand Device Manager, Jp1 Hicommand Global Link Availability Manager, Jp1 Hicommand Replication Monitor, Jp1 Hicommand Tiered Storage Manager

Hitachi

4 products

Jp1 Hicommand Device Manager

Jp1 Hicommand Global Link Availability Manager

Jp1 Hicommand Replication Monitor

Jp1 Hicommand Tiered Storage Manager

Configuration A

21 vulnerable

Vulnerable Software	Affected Versions
Hitachi Jp1 Hicommand Device Manager	Version 02_30
Hitachi Jp1 Hicommand Device Manager	Version 02_30
Hitachi Jp1 Hicommand Device Manager	Version 05_00
Hitachi Jp1 Hicommand Device Manager	Version 05_00
Hitachi Jp1 Hicommand Device Manager	Version 05_10
Hitachi Jp1 Hicommand Device Manager	Version 05_50
Hitachi Jp1 Hicommand Device Manager	Version 05_50
Hitachi Jp1 Hicommand Device Manager	Version 05_50
Hitachi Jp1 Hicommand Global Link Availability Manager	Version 05_00
Hitachi Jp1 Hicommand Replication Monitor	Version 04_00
Hitachi Jp1 Hicommand Replication Monitor	Version 04_00
Hitachi Jp1 Hicommand Replication Monitor	Version 05_00
Hitachi Jp1 Hicommand Replication Monitor	Version 05_00
Hitachi Jp1 Hicommand Replication Monitor	Version 05_50
Hitachi Jp1 Hicommand Replication Monitor	Version 05_50
Hitachi Jp1 Hicommand Tiered Storage Manager	Version 04_00
Hitachi Jp1 Hicommand Tiered Storage Manager	Version 04_30
Hitachi Jp1 Hicommand Tiered Storage Manager	Version 05_00
Hitachi Jp1 Hicommand Tiered Storage Manager	Version 05_00
Hitachi Jp1 Hicommand Tiered Storage Manager	Version 05_50
Hitachi Jp1 Hicommand Tiered Storage Manager	Version 05_50