CVE-2025-9661 OS command injection vulneravility in the management gui (maintenance utility) of Hitachi Virtual Storage Platform One Block 23/24/26/28

🗓️ 07 May 2026 07:08:14Reported by HitachiType

CVE-2025-9661: Command injection in Hitachi One Block GUI for versions 23/24/26/28 before updates.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2025-9661	7 May 202607:08	–	attackerkb
Circl	CVE-2025-9661	7 May 202610:23	–	circl
CNNVD	Hitachi Virtual Storage Platform One Block 操作系统命令注入漏洞	7 May 202600:00	–	cnnvd
CVE	CVE-2025-9661	7 May 202607:08	–	cve
EUVD	EUVD-2025-209708	7 May 202609:31	–	euvd
Japan Vulnerability Notes	Security information for Hitachi Disk Array Systems	31 Mar 202606:53	–	jvn
NVD	CVE-2025-9661	7 May 202608:16	–	nvd
Positive Technologies	PT-2026-38344	7 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2025-9661	5 Jun 202619:41	–	redhatcve
Vulnrichment	CVE-2025-9661 OS command injection vulneravility in the management gui (maintenance utility) of Hitachi Virtual Storage Platform One Block 23/24/26/28	7 May 202607:08	–	vulnrichment

[
  {
    "vendor": "Hitachi",
    "product": "Hitachi Virtual Storage Platform One Block 23",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "DKCMAIN A3-04-21-40/00, ESM A3-04-21/00",
        "changes": [
          {
            "at": "DKCMAIN A3-04-21-40/00, ESM A3-04-21/00",
            "status": "unaffected"
          }
        ],
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Hitachi",
    "product": "Hitachi Virtual Storage Platform One Block 24",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "DKCMAIN A3-04-21-40/00, ESM A3-04-21/00",
        "changes": [
          {
            "at": "DKCMAIN A3-04-21-40/00, ESM A3-04-21/00",
            "status": "unaffected"
          }
        ],
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Hitachi",
    "product": "Hitachi Virtual Storage Platform One Block 26",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "DKCMAIN A3-04-21-40/00, ESM A3-04-21/00",
        "changes": [
          {
            "at": "DKCMAIN A3-04-21-40/00, ESM A3-04-21/00",
            "status": "unaffected"
          }
        ],
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Hitachi",
    "product": "Hitachi Virtual Storage Platform One Block 28",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "DKCMAIN A3-04-21-40/00, ESM A3-04-21/00",
        "changes": [
          {
            "at": "DKCMAIN A3-04-21-40/00, ESM A3-04-21/00",
            "status": "unaffected"
          }
        ],
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
hitachi	www.hitachi.com/products/it/storage-solutions/sec_info/2026/2026_309.html

07 May 2026 07:08Current

CVSS 3.18.1

EPSS0.009

CWE-78