Firmware Update Validation Flaw in Hitachi Virtual Storage Platform
CVE-2025-0824

3.7LOW

Key Information:

Vendor: Hitachi
Status: Hitachi Virtual Storage Platform One Block 23, 24, 26, 28
Vendor: CVE Published:; 29 June 2026

What is CVE-2025-0824?

A validation flaw in the firmware update process of the Hitachi Virtual Storage Platform One Block versions 23, 24, 26, and 28 allows unauthorized modifications to the firmware, potentially exposing systems to security risks. This vulnerability leads to the possibility of executing unverified code and undermining the integrity of the storage environment. Users and organizations utilizing these specific versions should prioritize applying the latest updates and implementing security best practices to safeguard their systems.

Affected Version(s)

Hitachi Virtual Storage Platform One Block 23, 24, 26, 28 0

References

https://www.hitachi.com/products/it/storage-solutions/sec...

vendor-advisory

CVSS V3.1

Score:

3.7

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2026
Vulnerability Reserved
Jan 29, 2025

CVE-2025-0824 Data

JSON