CVE-2026-2072 | THREATINT

Description

Cross-Site Scripting vulnerability in Hitachi Infrastructure Analytics Advisor (Analytics probe component), Hitachi Ops Center Analyzer.This issue affects Hitachi Infrastructure Analytics Advisor:; Hitachi Ops Center Analyzer: from 10.0.0-00 before 11.0.5-00.

PUBLISHED Reserved 2026-02-06 | Published 2026-03-25 | Updated 2026-03-25 | Assigner Hitachi

HIGH: 8.2CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:L

Problem types

CWE-79 Improper neutralization of input during web page generation ('cross-site scripting')

Product status

Default status

unaffected

Any version before *

affected

Default status

unaffected

10.0.0-00 (custom) before 11.0.5-00

affected

References

www.hitachi.com/...info/vuls/hitachi-sec-2026-114/index.html vendor-advisory

cve.org (CVE-2026-2072)

nvd.nist.gov (CVE-2026-2072)

Download JSON