PT-2026-38350 · Hitachi · Virtual Storage Platform G350+22
Published
2026-05-07
·
Updated
2026-05-07
·
CVE-2025-2514
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, One Block 23, One Block 24, One Block 26, One Block 28 versions prior to DKCMAIN Ver 88-08-16-xx/00 and GUM Ver. 88-08-20/00
Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, One Block 23, One Block 24, One Block 26, One Block 28 versions prior to DKCMAIN Ver 93-07-26-xx/00 and GUM Ver. 93-07-26/00
Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, One Block 23, One Block 24, One Block 26, One Block 28 versions prior to DKCMAIN Ver A3-04-02-xx/00 and EMS Ver. A3-04-02/00
Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, One Block 23, One Block 24, One Block 26, One Block 28 versions prior to DKCMAIN Ver A3-03-41-xx/00 and EMS Ver. A3-03-41/00
Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, One Block 23, One Block 24, One Block 26, One Block 28 versions prior to DKCMAIN Ver A3-03-03-xx/00 and EMS Ver. A3-03-02/00
Description
There is an improper restriction of excessive authentication attempts, which could allow an attacker to perform multiple login attempts without being blocked.
Recommendations
Update to DKCMAIN Ver 88-08-16-xx/00 and GUM Ver. 88-08-20/00.
Update to DKCMAIN Ver 93-07-26-xx/00 and GUM Ver. 93-07-26/00.
Update to DKCMAIN Ver A3-04-02-xx/00 and EMS Ver. A3-04-02/00.
Update to DKCMAIN Ver A3-03-41-xx/00 and EMS Ver. A3-03-41/00.
Update to DKCMAIN Ver A3-03-03-xx/00 and EMS Ver. A3-03-02/00.
Fix
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Virtual Storage Platform E1090
Virtual Storage Platform E1090H
Virtual Storage Platform E390
Virtual Storage Platform E390H
Virtual Storage Platform E590
Virtual Storage Platform E590H
Virtual Storage Platform E790
Virtual Storage Platform E790H
Virtual Storage Platform E990
Virtual Storage Platform F350
Virtual Storage Platform F370
Virtual Storage Platform F700
Virtual Storage Platform F900
Virtual Storage Platform G130
Virtual Storage Platform G150
Virtual Storage Platform G350
Virtual Storage Platform G370
Virtual Storage Platform G700
Virtual Storage Platform G900
Virtual Storage Platform One Block 23
Virtual Storage Platform One Block 24
Virtual Storage Platform One Block 26
Virtual Storage Platform One Block 28