Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session Hijacking.This issue affects Hitachi Ops Center

Description

Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session Hijacking.This issue affects Hitachi Ops Center API Configuration Manager: from 10.0.0-00 before 11.0.5-00; Hitachi Configuration Manager: from 8.5.1-00 before 11.0.5-00; Hitachi Device Manager: from 8.4.1-00 before 8.6.5-00.

Affected Products

Vendor	Product	Versions
hitachi	configuration_manager	< 11.0.5-00, < 8.6.5-00, < 11.0.5-00

References

https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2026-111/index.html(Vendor Advisory)

CVSS 3.15.2 MEDIUM

VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

CISA KEV❌ No

Actively exploited❌ No

Patch available11.0.5-00, 8.6.5-00

CWECWE-532

PublishedFeb 25, 2026

Last enriched4d ago

Trending Score0

Source articles0

Independent0

Info Completeness8/14

Missing: epss, kev, exploit, patch, iocs, mitre_attack

Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager, Hitachi Device Manager allows Session Hijacking.This issue affects Hitachi Ops Center

Description

Affected Products

References

Community Vote

Related CVEs (4)

Pin to Dashboard

Verification

Vulnerability Timeline