CVE-2025-0824

Summary

Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28.

This issue affects Hitachi Virtual Storage Platform One Block 23, 24, 26, 28: before DKCMAIN A3-04-21-40/00, ESM A3-04-21/00.

Affected Software

VendorProductVersion RangeStatus
HitachiHitachi Virtual Storage Platform One Block 23, 24, 26, 280 < DKCMAIN A3-04-21-40/00, ESM A3-04-21/00affected

Weaknesses

  • CWE-347: CWE-347 Improper verification of cryptographic signature

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References