CVE-2025-7386

Summary

Information exposure vulnerability in Hitachi Storage Navigator.

This issue affects Hitachi Virtual Storage Platform 5100, 5200, 5500, 5600, 5100H, 5200H, 5500H, 5600H, VX8: before DKCMAIN Ver. 90-09-24-00/00, SVP Ver. 90-09-24/00, before DKCMAIN Ver. 90-08-86-00/00, SVP Ver. 90-08-86/00; Hitachi Virtual Storage Platform G1000, G1500, F1500, VX7: before DKCMAIN Ver. 80-06-96-00/00, SVP Ver. 80-06-91/00.

Affected Software

VendorProductVersion RangeStatus
HitachiHitachi Virtual Storage Platform 5100, 5200, 5500, 5600, 5100H, 5200H, 5500H, 5600H, VX80 < DKCMAIN Ver. 90-09-24-00/00, SVP Ver. 90-09-24/00affected
HitachiHitachi Virtual Storage Platform 5100, 5200, 5500, 5600, 5100H, 5200H, 5500H, 5600H, VX80 < DKCMAIN Ver. 90-08-86-00/00, SVP Ver. 90-08-86/00affected
HitachiHitachi Virtual Storage Platform G1000, G1500, F1500, VX70 < DKCMAIN Ver. 80-06-96-00/00, SVP Ver. 80-06-91/00affected

Weaknesses

  • CWE-522: CWE-522 Insufficiently Protected Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References