Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2007-1853

Unspecified vulnerability in Hitachi JP1/HiCommand DeviceManager, Global Link Availability Manager, Replication Monitor, Tiered Storage Manager, and Tuning Manager allows local users to obtain authentication information via unspecified vectors.

Security Impact Summary

CVE-2007-1853 is a security vulnerability that . Impacting 5 products from hitachi, from hitachi, from hitachi and 2 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Originally identified in 2007, this vulnerability predates many modern security frameworks and practices. The vulnerability landscape of that era was characterized by different threat models and less mature defense mechanisms compared to contemporary standards.

Published

2007-04-03T16:19:00.000

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 5.0 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	hitachi	jp1-hicommand_device_manager	05_00	Yes
Application	hitachi	jp1-hicommand_device_manager	05_10	Yes
Application	hitachi	jp1-hicommand_device_manager	05_10_01	Yes
Application	hitachi	jp1-hicommand_device_manager	05_10_02	Yes
Application	hitachi	jp1-hicommand_device_manager	05_10_03	Yes
Application	hitachi	jp1-hicommand_device_manager	05_10_04	Yes
Application	hitachi	jp1-hicommand_device_manager	05_10_05	Yes
Application	hitachi	jp1-hicommand_device_manager	05_50	Yes
Application	hitachi	jp1-hicommand_device_manager	05_50_01	Yes
Application	hitachi	jp1-hicommand_device_manager	05_50_02	Yes
Application	hitachi	jp1-hicommand_device_manager	05_60	Yes
Application	hitachi	jp1-hicommand_global_link_availability_manager	05_00	Yes
Application	hitachi	jp1-hicommand_global_link_availability_manager	05_10	Yes
Application	hitachi	jp1-hicommand_global_link_availability_manager	05_20	Yes
Application	hitachi	jp1-hicommand_global_link_availability_manager	05_30	Yes
Application	hitachi	jp1-hicommand_global_link_availability_manager	05_40	Yes
Application	hitachi	jp1-hicommand_global_link_availability_manager	05_50	Yes
Application	hitachi	jp1-hicommand_global_link_availability_manager	05_60	Yes
Application	hitachi	jp1-hicommand_replication_monitor	04_00	Yes
Application	hitachi	jp1-hicommand_replication_monitor	05_00	Yes
Application	hitachi	jp1-hicommand_replication_monitor	05_10	Yes
Application	hitachi	jp1-hicommand_replication_monitor	05_20	Yes
Application	hitachi	jp1-hicommand_replication_monitor	05_30	Yes
Application	hitachi	jp1-hicommand_replication_monitor	05_40	Yes
Application	hitachi	jp1-hicommand_replication_monitor	05_50	Yes
Application	hitachi	jp1-hicommand_replication_monitor	05_50_01	Yes
Application	hitachi	jp1-hicommand_replication_monitor	05_50_02	Yes
Application	hitachi	jp1-hicommand_replication_monitor	05_60	Yes
Application	hitachi	jp1-hicommand_tiered_storage_manager	04_00	Yes
Application	hitachi	jp1-hicommand_tiered_storage_manager	05_00	Yes
Application	hitachi	jp1-hicommand_tiered_storage_manager	05_10	Yes
Application	hitachi	jp1-hicommand_tiered_storage_manager	05_20	Yes
Application	hitachi	jp1-hicommand_tiered_storage_manager	05_30	Yes
Application	hitachi	jp1-hicommand_tiered_storage_manager	05_40	Yes
Application	hitachi	jp1-hicommand_tiered_storage_manager	05_50	Yes
Application	hitachi	jp1-hicommand_tiered_storage_manager	05_50_01	Yes
Application	hitachi	jp1-hicommand_tiered_storage_manager	05_50_02	Yes
Application	hitachi	jp1-hicommand_tuning_manager	04_00	Yes
Application	hitachi	jp1-hicommand_tuning_manager	05_00	Yes
Application	hitachi	jp1-hicommand_tuning_manager	05_10	Yes
Application	hitachi	jp1-hicommand_tuning_manager	05_20	Yes
Application	hitachi	jp1-hicommand_tuning_manager	05_30	Yes
Application	hitachi	jp1-hicommand_tuning_manager	05_40	Yes
Application	hitachi	jp1-hicommand_tuning_manager	05_50	Yes

References

http://osvdb.org/34590 ([email protected])
http://secunia.com/advisories/24684 Vendor Advisory ([email protected])
http://www.hitachi-support.com/security_e/vuls_e/HS07-007_e/index-e.html ([email protected])
http://www.securityfocus.com/bid/23210 ([email protected])
http://www.vupen.com/english/advisories/2007/1169 ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/33328 ([email protected])
http://osvdb.org/34590 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24684 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.hitachi-support.com/security_e/vuls_e/HS07-007_e/index-e.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/23210 (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2007/1169 (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33328 (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For hitachi's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.