CVE-2025-5781
Last modified
CVE-2025-5781 is a medium-severity vulnerability rated 5.2/10 on the CVSS scale. Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session Hijacking.This issue affects Hitachi Ops Center API Configuration Manager: from 10.0.0-00 before 11.0.5-00; Hitachi Configuration Manager: from 8.5.1-00 before 11.0.5-00; Hitachi Device Manager: from 8.4.1-00 before 8.6.5-00.. EPSS estimates a 0.10% chance of exploitation in the next 30 days.
Description
Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session Hijacking.This issue affects Hitachi Ops Center API Configuration Manager: from 10.0.0-00 before 11.0.5-00; Hitachi Configuration Manager: from 8.5.1-00 before 11.0.5-00; Hitachi Device Manager: from 8.4.1-00 before 8.6.5-00.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Hitachi | Configuration Manager | >= 8.5.1-00 |
| Hitachi | Configuration Manager | >= 8.5.1-00, < 11.0.5-00 |
| Hitachi | Device Manager | >= 8.4.1-00, < 8.6.5-00 |
| Hitachi | Ops Center Api Configuration Manager | >= 10.0.0-00, < 11.0.5-00 |
References
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2025-5781?
How severe is CVE-2025-5781?
How do I fix CVE-2025-5781?
Are you affected by CVE-2025-5781?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST