CVE-2025-2514

MEDIUM EPSS 21.6%
Published May 7, 20261mo ago · Modified Jun 17, 20262w ago
5.3 CVSS 3.1
Medium
Find Similar
Published May 7, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago

Description

Improper restriction of excessive authentication attempts vulnerability in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual Storage Platform One Block 23, One Block 24, One Block 26, One Block 28. This issue affects Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual Storage Platform One Block 23, One Block 24, One Block 26, One Block 28  : before DKCMAIN Ver 88-08-16-xx/00, GUM Ver. 88-08-20/00, before DKCMAIN Ver 93-07-26-xx/00, GUM Ver. 93-07-26/00, before DKCMAIN Ver A3-04-02-xx/00, EMS Ver. A3-04-02/00, before DKCMAIN Ver A3-03-41-xx/00, EMS Ver. A3-03-41/00, before DKCMAIN Ver A3-03-03-xx/00, EMS Ver. A3-03-02/00.

CVSS Details

Base Score
5.3
Exploitability
3.9
Impact
1.4
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality Low
Integrity None
Availability None

Threat Intelligence

EPSS Exploit Probability
21.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-307

Affected Products 42

VendorProductVersionRange
hitachivsp_e1090h_firmware*any
hitachivsp_e1090h*any
hitachivsp_e790h_firmware*any
hitachivsp_e790h*any
hitachivsp_e590h_firmware*any
hitachivsp_e590h*any
hitachivsp_e390h_firmware*any
hitachivsp_e390h*any
hitachivsp_e1090_firmware*any
hitachivsp_e1090*any
hitachivsp_e990_firmware*any
hitachivsp_e990*any
hitachivsp_e790_firmware*any
hitachivsp_e790*any
hitachivsp_e590_firmware*any
hitachivsp_e590*any
hitachivsp_e390_firmware*any
hitachivsp_e390*any
hitachivsp_f900_firmware*any
hitachivsp_f900*any
hitachivsp_f700_firmware*any
hitachivsp_f700*any
hitachivsp_f370_firmware*any
hitachivsp_f370*any
hitachivsp_f350_firmware*any
hitachivsp_f350*any
hitachivsp_g900_firmware*any
hitachivsp_g900*any
hitachivsp_g700_firmware*any
hitachivsp_g700*any
hitachivsp_g370_firmware*any
hitachivsp_g370*any
hitachivsp_g350_firmware*any
hitachivsp_g350*any
hitachivsp_g150_firmware*any
hitachivsp_g150*any
hitachivsp_g130_firmware*any
hitachivsp_g130*any
hitachivirtual_storage_one_block23any
hitachivirtual_storage_one_block24any
hitachivirtual_storage_one_block26any
hitachivirtual_storage_one_block28any

References 1

  • hitachi.com https://www.hitachi.com/products/it/storage-solutions/sec_info/2026/2026_306.html
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.