228 CVEs

2 in CISA KEV

hitachi Vulnerabilities

CVE security advisories and vulnerability history for hitachi.

228

Total CVEs

Published

2

In CISA KEV

Exploited in the wild

10

Public exploits

With known exploit

6.7

Avg CVSS

2003–2026

Overview

hitachi has 228 published CVE records since 2003, of which 2 are in CISA's Known Exploited Vulnerabilities catalog and 10 have a known public exploit. The average CVSS base score across scored CVEs is 6.7.

This page aggregates every publicly disclosed vulnerability (CVE) affecting hitachi products, with severity breakdowns, the most-affected products, the most common weakness types, and the latest disclosures.

Severity and exploitation

How the CVSS severity of hitachi's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical8

High53

Medium44

Low8

115 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

2

2 of hitachi's CVEs are confirmed exploited in the wild.

Public exploits

10

10 of hitachi's CVEs have a known public exploit available.

Most affected products

The hitachi products with the most published CVEs.

windows30 CVEs
linux kernel28 CVEs
Pentaho Business Analytics Server20 CVEs
device manager17 CVEs
Hitachi Ops Center Analyzer17 CVEs
vantara pentaho16 CVEs
vantara pentaho business analytics server14 CVEs
ucosminexus service platform13 CVEs

Common weakness types

The CWE weakness categories most often found in hitachi CVEs. Follow any weakness for its full explanation.

CNAs that assign these CVEs

The CVE Numbering Authorities that publish hitachi CVE records.

Disclosure activity by year

How many hitachi CVEs were published each year.

2019

2

2020

2

2021

17

2022

18

2023

36

2024

23

2025

13

2026

10

Latest hitachi CVEs

The most recently disclosed vulnerabilities affecting hitachi.

Missing Password Masking in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer and Hitachi Ops Center Analyzer viewpoint
CWE-549
Medium · CVSS 4.6
EPSS 0.0%2026-05-26
Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console
CWE-94
High · CVSS 8.3
EPSS 0.1%2026-05-07
Improper Restriction of Excessive Authentication Attempts vulnerability in Hitachi Virtual Storage Platform
CWE-307
Medium · CVSS 5.3
EPSS 0.0%2026-05-07
OS command injection vulneravility in the management gui (maintenance utility) of Hitachi Virtual Storage Platform One Block 23/24/26/28
CWE-78
High · CVSS 8.1
EPSS 0.0%2026-05-07
Buffer Overflow Vulnerability in JP1/IT Desktop Management 2 and JP1/NETM/DM
CWE-763
Medium · CVSS 5.5
EPSS 0.0%2026-04-07
Remote Code Execution Vulnerability in JP1/IT Desktop Management 2 and JP1/NETM/DM
CWE-73
High · CVSS 8.8
EPSS 0.1%2026-04-07
Cross-Site Scripting vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer
CWE-79
High · CVSS 8.2
EPSS 0.1%2026-03-25
Open Redirect Vulnerability in Hitachi Ops Center Administrator
CWE-601
Medium · CVSS 4.3
EPSS 0.0%2026-03-25
Hitachi Vantara Pentaho Data Integration & Analytics - Missing Authorization
CWE-862
Critical · CVSS 9.1
EPSS 0.0%2026-03-09
Information Exposure Vulnerability in Hitachi Configuration Manager, Hitachi Ops Center API Configuration Manager
CWE-532
Medium · CVSS 5.2
EPSS 0.0%2026-02-25
Cross-Site Scripting vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer
CWE-79
High · CVSS 8.2
EPSS 0.0%2025-12-24
Authorization bypass vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer
CWE-306
High · CVSS 7.1
EPSS 0.0%2025-12-24

Track new hitachi CVEs as they are disclosed and get AI-written analysis and remediation guidance.

Monitor hitachi CVEs

Other vendors

Browse vulnerabilities for other tracked vendors.

tibco232 CVEs org.xwiki.platform232 CVEs golang228 CVEs hpe227 CVEs Delta Electronics227 CVEs nodejs227 CVEs Bentley226 CVEs zoom226 CVEs

Browse all vendors

Frequently asked questions

Common questions about hitachi vulnerabilities.

How many CVEs does hitachi have?

hitachi has 228 published CVE records since 2003, including 23 in the last two years.

How many hitachi CVEs are in CISA KEV?

Yes — 2 of hitachi's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.

Which hitachi products have the most CVEs?

The hitachi products with the most published CVEs are windows, linux kernel, Pentaho Business Analytics Server, device manager, Hitachi Ops Center Analyzer.

What are the most common weakness types in hitachi CVEs?

hitachi's CVEs most often map to these CWE weakness types: CWE-276 (Incorrect Default Permissions), CWE-532 (Insertion of Sensitive Information into Log File), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-209 (Generation of Error Message Containing Sensitive Information).

Are there public exploits for hitachi vulnerabilities?

Yes — 10 of hitachi's CVEs have a known public exploit.

How many critical hitachi vulnerabilities are there?

hitachi has 8 critical and 53 high-severity CVEs.

What is the average severity of hitachi CVEs?

The average CVSS base score across hitachi's scored CVEs is 6.7.

References

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track hitachi vulnerabilities

Monitor new hitachi vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing