Default Credentials Vulnerability in SuprOS by Hitachi Energy
CVE-2025-7740

8.8HIGH

Key Information:

Vendor: Hitachi
Status: Supros
Vendor: CVE Published:; 28 January 2026

What is CVE-2025-7740?

A vulnerability exists in SuprOS where default credentials may allow an authenticated local attacker to exploit an admin account created during product deployment. This poses significant security risks, allowing unauthorized access to critical system functions.

Affected Version(s)

SuprOS 9.0.0 <= 9.2.2.0

References

https://publisher.hitachienergy.com/preview?DocumentID=8D...

CVSS V4

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 28, 2026
Vulnerability Reserved
Jul 17, 2025

CVE-2025-7740 Data

JSON