CVE 8.1 HIGH

OS command injection vulneravility in the management gui (maintenance utility) of Hitachi Virtual Storage Platform One Block 23/24/26/28_CVE-2025-9661

May 7, 2026 invoker category_cve
8.1 / 10
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

OS command injection vulneravility in the management gui (maintenance utility) of Hitachi Virtual Storage Platform One Block 23, 24, 26 and 28.

This issue affects Hitachi Virtual Storage Platform One Block 23/24/26/28: before DKCMAIN A3-04-21-40/00, ESM A3-04-21/00.

Basic Information

ID CVE-2025-9661
Source Hitachi
Published May 7, 2026 at 07:08

Affected Product

Vendor Hitachi
Product Hitachi Virtual Storage Platform One Block 23
Affected Versions Hitachi Hitachi Virtual Storage Platform One Block 23 0
Hitachi Hitachi Virtual Storage Platform One Block 24 0
Hitachi Hitachi Virtual Storage Platform One Block 26 0
Hitachi Hitachi Virtual Storage Platform One Block 28 0

CWE Classification

CWE-78

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.