What is CVE-2025-9661?

CVE-2025-9661 is a high-severity vulnerability in Hitachi Virtual Storage Platform One Block 23, classified under OS Command Injection. CVSS score: 8.1/10. Published 2026-05-07.

How severe is CVE-2025-9661?

High severity. CVSS v3 base score is 8.1 out of 10.

RCE in Hitachi Virtual Storage Platform One Block 23

CVE-2025-9661

OS command injection vulneravility in the management gui (maintenance utility) of Hitachi Virtual Storage Platform One Block 23, 24, 26 and 28. This issue affects Hitachi Virtual Storage Platform One Block 23/24/26/28: before DKCMAIN A3-0…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.000 (15.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Hitachi Virtual Storage Platform One Block 23 — versions 0
Hitachi Virtual Storage Platform One Block 24 — versions 0
Hitachi Virtual Storage Platform One Block 26 — versions 0
Hitachi Virtual Storage Platform One Block 28 — versions 0
Hitachi Virtual_storage_one_block — versions 23, 24, 26

Weakness classification (CWE)

CWE-78 — OS Command Injection

References

hirt@hitachi.co.jp (Vendor Advisory)

Frequently asked questions

What is CVE-2025-9661?: CVE-2025-9661 is a high-severity vulnerability in Hitachi Virtual Storage Platform One Block 23, classified under OS Command Injection. CVSS score: 8.1/10. Published 2026-05-07.
How severe is CVE-2025-9661?: High severity. CVSS v3 base score is 8.1 out of 10.