Information Exposure in Hitachi JP1/IT Desktop Management 2 - Smart Device Manager
CVE-2025-27525

3.9LOW

Key Information:

Vendor: Hitachi
Status: Jp1/it Desktop Management 2 - Smart Device Manager
Vendor: CVE Published:; 15 May 2025

What is CVE-2025-27525?

An information exposure issue exists in Hitachi's JP1/IT Desktop Management 2 - Smart Device Manager that could allow unauthorized access to sensitive information. This vulnerability affects multiple versions of the product, making it crucial for users to ensure they are running the latest software to protect their data.

Affected Version(s)

JP1/IT Desktop Management 2 - Smart Device Manager Windows 12-00 < 12-00-08

JP1/IT Desktop Management 2 - Smart Device Manager Windows 11-10 <= 11-10-08

JP1/IT Desktop Management 2 - Smart Device Manager Windows 11-00 <= 11-00-05

References

https://www.hitachi.com/products/it/software/security/inf...

vendor-advisory

CVSS V3.1

Score:

3.9

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 15, 2025
Vulnerability Reserved
Feb 27, 2025