CVE-2025-7740

HIGH

Hitachi Energy SuprOS 9.0.0-9.2.2.0 - Use of Default Credentials

Title source: llm
STIX 2.1

Description

Default credentials vulnerability exists in SuprOS product. If exploited, this could allow an authenticated local attacker to use an admin account created during product deployment.

References (1)

Core 1

Scores

CVSS v4 8.8
EPSS 0.0018
EPSS Percentile 7.4%
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-1392
Status published
Products (1)
Hitachi Energy/SuprOS 9.0.0 - 9.2.2.0
Published Jan 28, 2026
Tracked Since Feb 18, 2026