Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.2
Hitachi Ops Center Software Session Hijacking Risk
CVE-2025-5781
Summary
Certain versions of Hitachi Ops Center software allow an attacker to take control of a legitimate user's session, potentially leading to unauthorized access and actions. This affects Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, and Hitachi Device Manager. To protect your system, update to the latest version of the software or apply a patch if available.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| hitachi | configuration_manager | > 8.5.1-00 | – |
| hitachi | configuration_manager | > 8.5.1-00 , <= 11.0.5-00 | – |
| hitachi | device_manager | > 8.4.1-00 , <= 8.6.5-00 | – |
| hitachi | ops_center_api_configuration_manager | > 10.0.0-00 , <= 11.0.5-00 | – |
Original title
Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session Hijacking.This issue affects Hitachi Ops Cen...
Original description
Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session Hijacking.This issue affects Hitachi Ops Center API Configuration Manager: from 10.0.0-00 before 11.0.5-00; Hitachi Configuration Manager: from 8.5.1-00 before 11.0.5-00; Hitachi Device Manager: from 8.4.1-00 before 8.6.5-00.
nvd CVSS3.1
5.2
Vulnerability type
CWE-532
Insertion of Sensitive Information into Log File
Published: 25 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026