PT-2026-21831 · Hitachi · Hitachi Ops Center Api Configuration Manager+2
Published
2026-02-25
·
Updated
2026-02-25
·
CVE-2025-5781
CVSS v3.1
5.2
Medium
| AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Hitachi Ops Center API Configuration Manager versions 10.0.0-00 through 10.0.0-00 before 11.0.5-00
Hitachi Configuration Manager versions 8.5.1-00 through 8.5.1-00 before 11.0.5-00
Hitachi Device Manager versions 8.4.1-00 through 8.4.1-00 before 8.6.5-00
Description
An information exposure issue exists that could allow for session hijacking in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, and Hitachi Device Manager. The issue allows an attacker to potentially compromise user sessions.
Recommendations
Update Hitachi Ops Center API Configuration Manager to version 11.0.5-00 or later.
Update Hitachi Configuration Manager to version 11.0.5-00 or later.
Update Hitachi Device Manager to version 8.6.5-00 or later.
Fix
Insertion into Log File
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hitachi Configuration Manager
Hitachi Device Manager
Hitachi Ops Center Api Configuration Manager