{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-24T11:15:04.493","vulnerabilities":[{"cve":{"id":"CVE-2021-40337","sourceIdentifier":"cybersecurity@hitachienergy.com","published":"2022-01-25T20:15:08.403","lastModified":"2024-11-21T06:23:53.587","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site Scripting (XSS) vulnerability in Hitachi Energy LinkOne allows an attacker that manages to exploit the vulnerability can take advantage to exploit multiple web attacks and stole sensitive information. This issue affects: Hitachi Energy LinkOne 3.20; 3.22; 3.23; 3.24; 3.25; 3.26."},{"lang":"es","value":"Una vulnerabilidad de tipo Cross-site Scripting (XSS) en Hitachi Energy LinkOne permite a un atacante que consiga explotar la vulnerabilidad pueda aprovechar para realizar múltiples ataques web y robar información confidencial. Este problema afecta a: Hitachi Energy LinkOne versiones 3.20; 3.22; 3.23; 3.24; 3.25; 3.26"}],"metrics":{"cvssMetricV31":[{"source":"cybersecurity@hitachienergy.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N","baseScore":4.2,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":2.5},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"cybersecurity@hitachienergy.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hitachi:linkone:3.20:*:*:*:*:*:*:*","matchCriteriaId":"2A16D152-D43D-4142-9233-537641563DED"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachi:linkone:3.22:*:*:*:*:*:*:*","matchCriteriaId":"5CAD5EC3-8E95-4B92-92F8-D9D6E869736A"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachi:linkone:3.23:*:*:*:*:*:*:*","matchCriteriaId":"74EFFBDC-AC66-41B4-B2DA-B3800FADCDDD"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachi:linkone:3.24:*:*:*:*:*:*:*","matchCriteriaId":"41AC7B8C-4C18-4E79-96FA-E52FF81377E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachi:linkone:3.25:*:*:*:*:*:*:*","matchCriteriaId":"8AA20569-CB37-404F-B459-2C5CD4C3C44D"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachi:linkone:3.26:*:*:*:*:*:*:*","matchCriteriaId":"B91F1986-443B-4802-8D20-FFD8B7FE7322"}]}]}],"references":[{"url":"https://search.abb.com/library/Download.aspx?DocumentID=8DBD000079&LanguageCode=en&DocumentPartId=&Action=Launch","source":"cybersecurity@hitachienergy.com","tags":["Vendor Advisory"]},{"url":"https://search.abb.com/library/Download.aspx?DocumentID=8DBD000079&LanguageCode=en&DocumentPartId=&Action=Launch","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}