Close Menu
    Subscribe
    Alerts

    CVE-2025-1978 | THREATINT

    adminBy No Comments2 Mins Read


    Home

    Description

    Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual Storage Platform One Block 23, One Block 24, One Block 26, One Block 28. This issue affects Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual Storage Platform One Block 23, One Block 24, One Block 26, One Block 28 : before DKCMAIN Ver. 88-08-16-xx/00, SVP Ver. 88-08-18-xx/00, before DKCMAIN Ver. 93-07-26-xx/00, SVP Ver. 93-07-26-xx/00, before DKCMAIN Ver. A3-04-02-xx/00, MPC Ver. A3-04-02-xx/00, before DKCMAIN Ver. A3-03-41-xx/00, MPC Ver. A3-03-41-xx/00, before DKCMAIN Ver. A3-03-03-xx/00, MPC Ver. A3-03-03-xx/00.

    PUBLISHED Reserved 2025-03-05 | Published 2026-05-07 | Updated 2026-05-07 | Assigner Hitachi

    HIGH: 8.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

    Problem types

    CWE-94 Improper Control of Generation of Code (‘Code Injection’)

    Product status

    Default status
    unaffected

    Any version before DKCMAIN Ver. 88-08-16-xx/00, SVP Ver. 88-08-18-xx/00
    affected

    Any version before DKCMAIN Ver. 93-07-26-xx/00, SVP Ver. 93-07-26-xx/00
    affected

    Any version before DKCMAIN Ver. A3-04-02-xx/00, MPC Ver. A3-04-02-xx/00
    affected

    Any version before DKCMAIN Ver. A3-03-41-xx/00, MPC Ver. A3-03-41-xx/00
    affected

    Any version before DKCMAIN Ver. A3-03-03-xx/00, MPC Ver. A3-03-03-xx/00
    affected

    Default status
    unaffected

    Any version before DKCMAIN Ver. 88-08-16-xx/00, SVP Ver. 88-08-18-xx/00
    affected

    Any version before DKCMAIN Ver. 93-07-26-xx/00, SVP Ver. 93-07-26-xx/00
    affected

    Any version before DKCMAIN Ver. A3-04-02-xx/00, MPC Ver. A3-04-02-xx/00
    affected

    Any version before DKCMAIN Ver. A3-03-41-xx/00, MPC Ver. A3-03-41-xx/00
    affected

    Any version before DKCMAIN Ver. A3-03-03-xx/00, MPC Ver. A3-03-03-xx/00
    affected

    Default status
    unaffected

    Any version before DKCMAIN Ver. 88-08-16-xx/00, SVP Ver. 88-08-18-xx/00
    affected

    Any version before DKCMAIN Ver. 93-07-26-xx/00, SVP Ver. 93-07-26-xx/00
    affected

    Any version before DKCMAIN Ver. A3-04-02-xx/00, MPC Ver. A3-04-02-xx/00
    affected

    Any version before DKCMAIN Ver. A3-03-41-xx/00, MPC Ver. A3-03-41-xx/00
    affected

    Any version before DKCMAIN Ver. A3-03-03-xx/00, MPC Ver. A3-03-03-xx/00
    affected

    Credits

    Thomas Josef Riedmaier, Siemens Energy. finder

    References

    www.hitachi.com/…age-solutions/sec_info/2026/2026_307.html

    cve.org (CVE-2025-1978)

    nvd.nist.gov (CVE-2025-1978)

    Download JSON



    Source link

    Share.

    Related Posts

    Add A Comment

    Comments are closed.