Vulnerability Database

302,032

Total vulnerabilities in the database

CVE-2018-21033

A vulnerability in Hitachi Command Suite prior to 8.6.2-00, Hitachi Automation Director prior to 8.6.2-00 and Hitachi Infrastructure Analytics Advisor prior to 4.2.0-00 allow authenticated remote users to load an arbitrary Cascading Style Sheets (CSS) token sequence. Hitachi Command Suite includes Hitachi Device Manager, Hitachi Tiered Storage Manager, Hitachi Replication Manager, Hitachi Tuning Manager, Hitachi Global Link Manager and Hitachi Compute Systems Manager.

Published: Feb 14, 2020
Updated: Nov 9, 2025
CVE: CVE-2018-21033
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:P/A:N

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
hitachi / device_manager	-	8.6.2-00
hitachi / compute_systems_manager	-	8.6.2-00
hitachi / automation_director	-	8.6.2-00
hitachi / tiered_storage_manager	-	8.6.2-00
hitachi / replication_manager	-	8.6.2-00
hitachi / tuning_manager	-	8.6.2-00
hitachi / global_link_manager	-	8.6.2-00
hitachi / infrastructure_analytics_advisor	-	4.2.0-00

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo