cbcvebase.
CVE-2025-5781
published 2026-02-25

CVE-2025-5781: Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session…

PriorityP424medium5.2CVSS 3.1
AVLACLPRLUINSCCLILAN
EPSS
0.10%
1.0th percentile
Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session Hijacking.This issue affects Hitachi Ops Center API Configuration Manager: from 10.0.0-00 before 11.0.5-00; Hitachi Configuration Manager: from 8.5.1-00 before 11.0.5-00; Hitachi Device Manager: from 8.4.1-00 before 8.6.5-00.

Affected

7 ranges
VendorProductVersion rangeFixed in
hitachiconfiguration_manager>= 8.5.1-00 < 11.0.5-0011.0.5-00
hitachiconfiguration_manager>= 8.5.1-00
hitachidevice_manager>= 8.4.1-00 < 8.6.5-008.6.5-00
hitachihitachi_configuration_manager>= 8.5.1-00 < 11.0.5-0011.0.5-00
hitachihitachi_device_manager>= 8.4.1-00 < 8.6.5-008.6.5-00
hitachihitachi_ops_center_api_configuration_manager>= 10.0.0-00 < 11.0.5-0011.0.5-00
hitachiops_center_api_configuration_manager>= 10.0.0-00 < 11.0.5-0011.0.5-00
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.