CVE-2007-3623
Last modified
CVE-2007-3623 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in the Hitachi JP1/HiCommand Device Manager, Tiered Storage Manager, Replication Monitor, and GlobalLink Availability Manager before 20070528 allows remote attackers to inject arbitrary web script or HTML via the Expect HTTP header.. EPSS estimates a 1.92% chance of exploitation in the next 30 days.
Description
Cross-site scripting (XSS) vulnerability in the Hitachi JP1/HiCommand Device Manager, Tiered Storage Manager, Replication Monitor, and GlobalLink Availability Manager before 20070528 allows remote attackers to inject arbitrary web script or HTML via the Expect HTTP header.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Hitachi | Jp1-Hicommand Device Manager | 02_30 |
| Hitachi | Jp1-Hicommand Device Manager | 05_00 |
| Hitachi | Jp1-Hicommand Device Manager | 05_10 |
| Hitachi | Jp1-Hicommand Device Manager | 05_50 |
| Hitachi | Jp1-Hicommand Global Link Availability Manager | 05_00 |
| Hitachi | Jp1-Hicommand Replication Monitor | 04_00 |
| Hitachi | Jp1-Hicommand Replication Monitor | 05_00 |
| Hitachi | Jp1-Hicommand Replication Monitor | 05_50 |
| Hitachi | Jp1-Hicommand Tiered Storage Manager | 04_00 |
| Hitachi | Jp1-Hicommand Tiered Storage Manager | 04_30 |
| Hitachi | Jp1-Hicommand Tiered Storage Manager | 05_00 |
| Hitachi | Jp1-Hicommand Tiered Storage Manager | 05_50 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-3623?
How severe is CVE-2007-3623?
How do I fix CVE-2007-3623?
Are you affected by CVE-2007-3623?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST