High severity8.3NVD Advisory· Published May 7, 2026· Updated May 13, 2026

CVE-2025-1978

Description

Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual Storage Platform One Block 23, One Block 24, One Block 26, One Block 28.

This issue affects Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual Storage Platform One Block 23, One Block 24, One Block 26, One Block 28 : before DKCMAIN Ver. 88-08-16-xx/00, SVP Ver. 88-08-18-xx/00, before DKCMAIN Ver. 93-07-26-xx/00, SVP Ver. 93-07-26-xx/00, before DKCMAIN Ver. A3-04-02-xx/00, MPC Ver. A3-04-02-xx/00, before DKCMAIN Ver. A3-03-41-xx/00, MPC Ver. A3-03-41-xx/00, before DKCMAIN Ver. A3-03-03-xx/00, MPC Ver. A3-03-03-xx/00.

Affected products

Hitachi/Virtual Storage One Block4 versions
cpe:2.3:a:hitachi:virtual_storage_one_block:23:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:hitachi:virtual_storage_one_block:23:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:virtual_storage_one_block:24:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:virtual_storage_one_block:26:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:virtual_storage_one_block:28:*:*:*:*:*:*:*
Hitachi/Vsp E1090 Firmware
cpe:2.3:o:hitachi:vsp_e1090_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp E1090h Firmware
cpe:2.3:o:hitachi:vsp_e1090h_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp E390 Firmware
cpe:2.3:o:hitachi:vsp_e390_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp E390h Firmware
cpe:2.3:o:hitachi:vsp_e390h_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp E590 Firmware
cpe:2.3:o:hitachi:vsp_e590_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp E590h Firmware
cpe:2.3:o:hitachi:vsp_e590h_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp E790 Firmware
cpe:2.3:o:hitachi:vsp_e790_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp E790h Firmware
cpe:2.3:o:hitachi:vsp_e790h_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp E990 Firmware
cpe:2.3:o:hitachi:vsp_e990_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp F350 Firmware
cpe:2.3:o:hitachi:vsp_f350_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp F370 Firmware
cpe:2.3:o:hitachi:vsp_f370_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp F700 Firmware
cpe:2.3:o:hitachi:vsp_f700_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp F900 Firmware
cpe:2.3:o:hitachi:vsp_f900_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp G130 Firmware
cpe:2.3:o:hitachi:vsp_g130_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp G150 Firmware
cpe:2.3:o:hitachi:vsp_g150_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp G350 Firmware
cpe:2.3:o:hitachi:vsp_g350_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp G370 Firmware
cpe:2.3:o:hitachi:vsp_g370_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp G700 Firmware
cpe:2.3:o:hitachi:vsp_g700_firmware:-:*:*:*:*:*:*:*
Hitachi/Vsp G900 Firmware
cpe:2.3:o:hitachi:vsp_g900_firmware:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.hitachi.com/products/it/storage-solutions/sec_info/2026/2026_307.htmlnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.540
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000