CVE-2025-0824

LOW

lack of validation for firmware update in Hitachi Virtual Storage

Title source: cna
STIX 2.1

Description

Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28. This issue affects Hitachi Virtual Storage Platform One Block 23, 24, 26, 28: before DKCMAIN A3-04-21-40/00, ESM A3-04-21/00.

References (1)

Core 1

Scores

CVSS v3 3.7
EPSS 0.0008
EPSS Percentile 0.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-347
Status published
Products (1)
Hitachi/Hitachi Virtual Storage Platform One Block 23, 24, 26, 28 < DKCMAIN A3-04-21-40/00, ESM A3-04-21/00
Published Jun 29, 2026
Tracked Since Jun 29, 2026