Weak Encryption Vulnerability in Hitachi JP1/IT Desktop Management 2 - Smart Device Manager
CVE-2025-27524
5.3MEDIUM
Key Information:
- Vendor
Hitachi
- Vendor
- CVE Published:
- 15 May 2025
What is CVE-2025-27524?
A weak encryption vulnerability has been identified in Hitachi JP1/IT Desktop Management 2 - Smart Device Manager, impacting several versions of the software. This vulnerability may allow unauthorized access to sensitive data, putting users at risk. It affects versions prior to 12-00-08 as well as multiple versions of the 11 and 10 series. Users are advised to update to the latest version to mitigate potential security risks.
Affected Version(s)
JP1/IT Desktop Management 2 - Smart Device Manager Windows 12-00 < 12-00-08
JP1/IT Desktop Management 2 - Smart Device Manager Windows 11-10 <= 11-10-08
JP1/IT Desktop Management 2 - Smart Device Manager Windows 11-00 <= 11-00-05
References
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved