CVE-2025-7737— 日立虚拟存储平台 10G iSCSI 接口拒绝服务漏洞
Possible ATT&CK Techniques 1AI
T1499 · Endpoint Denial of ServiceAffected Version Matrix 16
| ベンダー | プロダクト | Version Range | ステータス |
|---|---|---|---|
| Hitachi | Hitachi Virtual Storage Platform E390, E590, E790, E390H, E590H, E790H | < DKCMAIN Ver.93-07-21-x0/00-05, CHB(iSCSI) Ver.88-01-02-04 | affected |
< DKCMAIN Ver.93-07-01-x0/00-07, CHB(iSCSI) Ver.88-01-02-04 | affected | ||
< DKCMAIN Ver.93-06-82-x0/00-06, CHB(iSCSI) Ver.88-01-02-04 | affected | ||
< DKCMAIN Ver.93-06-63-x0/00-04, CHB(iSCSI) Ver.88-01-02-04 | affected | ||
< DKCMAIN Ver.93-07-24-x0/00-02, CHB(iSCSI) Ver.88-01-02-04 | affected | ||
< DKCMAIN Ver.93-07-02-x0/00-02, CHB(iSCSI) Ver.88-01-02-04 | affected | ||
| Hitachi | Hitachi Virtual Storage Platform E990, E1090, E1090H | < DKCMAIN Ver.93-07-21-80/00-05, CHB(iSCSI) Ver.88-01-02-04 | affected |
< DKCMAIN Ver.93-07-01-80/00-07, CHB(iSCSI) Ver.88-01-02-04 | affected | ||
< DKCMAIN Ver.93-06-82-80/00-06, CHB(iSCSI) Ver.88-01-02-04 | affected | ||
< DKCMAIN Ver.93-06-63-80/00-04, CHB(iSCSI) Ver.88-01-02-04 | affected | ||
| Hitachi | Hitachi Virtual Storage Platform G100, G200, G400, G600, G800, F400, F600, F800 | < DKCMAIN Ver.83-06-20-x0/00-05, CHB(iSCSI) Ver.83-01-01-29 | affected |
| Hitachi | Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900 | < DKCMAIN Ver.88-08-10-x0/00-05, CHB(iSCSI) Ver.88-01-02-04 | affected |
| Hitachi | Hitachi Virtual Storage Platform VX7, G1000, G1500, F1500 | < DKCMAIN Ver.80-06-93-00/00-04, ISFC Ver.80-01-17 | affected |
| Hitachi | Hitachi Virtual Storage Platform VX8, 5100, 5500, 5100H, 5500H, 5200, 5600, 5200H, 5600H | < DKCMAIN Ver.90-09-01-00/01-01, CHB(iSCSI) Ver.90-01-01-07 | affected |
< DKCMAIN Ver.90-08-83-00/01-01, CHB(iSCSI) Ver.90-01-01-07 | affected | ||
< DKCMAIN Ver.90-08-63-00/01-01, CHB(iSCSI) Ver.90-01-01-07 | affected |
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2025-7737の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
DoS Vulnerability in 10G iSCSI Interface of Hitachi Virtual Storage Platform
ソース: NVD (National Vulnerability Database)
脆弱性説明
DoS Vulnerability in 10G iSCSI Interface of Hitachi Virtual Storage Platform. This issue affects Hitachi Virtual Storage Platform E990, E1090, E1090H: before DKCMAIN Ver.93-07-21-80/00-05, CHB(iSCSI) Ver.88-01-02-04, before DKCMAIN Ver.93-07-01-80/00-07, CHB(iSCSI) Ver.88-01-02-04, before DKCMAIN Ver.93-06-82-80/00-06, CHB(iSCSI) Ver.88-01-02-04, before DKCMAIN Ver.93-06-63-80/00-04, CHB(iSCSI) Ver.88-01-02-04; Hitachi Virtual Storage Platform E390, E590, E790, E390H, E590H, E790H: before DKCMAIN Ver.93-07-21-x0/00-05, CHB(iSCSI) Ver.88-01-02-04, before DKCMAIN Ver.93-07-01-x0/00-07, CHB(iSCSI) Ver.88-01-02-04, before DKCMAIN Ver.93-06-82-x0/00-06, CHB(iSCSI) Ver.88-01-02-04, before DKCMAIN Ver.93-06-63-x0/00-04, CHB(iSCSI) Ver.88-01-02-04, before DKCMAIN Ver.93-07-24-x0/00-02, CHB(iSCSI) Ver.88-01-02-04, before DKCMAIN Ver.93-07-02-x0/00-02, CHB(iSCSI) Ver.88-01-02-04; Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900: before DKCMAIN Ver.88-08-10-x0/00-05, CHB(iSCSI) Ver.88-01-02-04; Hitachi Virtual Storage Platform G100, G200, G400, G600, G800, F400, F600, F800: before DKCMAIN Ver.83-06-20-x0/00-05, CHB(iSCSI) Ver.83-01-01-29; Hitachi Virtual Storage Platform VX8, 5100, 5500, 5100H, 5500H, 5200, 5600, 5200H, 5600H: before DKCMAIN Ver.90-09-01-00/01-01, CHB(iSCSI) Ver.90-01-01-07, before DKCMAIN Ver.90-08-83-00/01-01, CHB(iSCSI) Ver.90-01-01-07, before DKCMAIN Ver.90-08-63-00/01-01, CHB(iSCSI) Ver.90-01-01-07; Hitachi Virtual Storage Platform VX7, G1000, G1500, F1500: before DKCMAIN Ver.80-06-93-00/00-04, ISFC Ver.80-01-17.
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
不加限制或调节的资源分配
ソース: NVD (National Vulnerability Database)
影響を受ける製品
| ベンダー | プロダクト | 影響を受けるバージョン | CPE | 購読 |
|---|---|---|---|---|
| Hitachi | Hitachi Virtual Storage Platform E990, E1090, E1090H | 0 ~ DKCMAIN Ver.93-07-21-80/00-05, CHB(iSCSI) Ver.88-01-02-04 | - | |
| Hitachi | Hitachi Virtual Storage Platform E390, E590, E790, E390H, E590H, E790H | 0 ~ DKCMAIN Ver.93-07-21-x0/00-05, CHB(iSCSI) Ver.88-01-02-04 | - | |
| Hitachi | Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900 | 0 ~ DKCMAIN Ver.88-08-10-x0/00-05, CHB(iSCSI) Ver.88-01-02-04 | - | |
| Hitachi | Hitachi Virtual Storage Platform G100, G200, G400, G600, G800, F400, F600, F800 | 0 ~ DKCMAIN Ver.83-06-20-x0/00-05, CHB(iSCSI) Ver.83-01-01-29 | - | |
| Hitachi | Hitachi Virtual Storage Platform VX8, 5100, 5500, 5100H, 5500H, 5200, 5600, 5200H, 5600H | 0 ~ DKCMAIN Ver.90-09-01-00/01-01, CHB(iSCSI) Ver.90-01-01-07 | - | |
| Hitachi | Hitachi Virtual Storage Platform VX7, G1000, G1500, F1500 | 0 ~ DKCMAIN Ver.80-06-93-00/00-04, ISFC Ver.80-01-17 | - |
II. CVE-2025-7737の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2025-7737のインテリジェンス情報
请登录查看更多情报信息。
CVE-2025-7737 厂商安全公告 (1)
IV. 関連脆弱性
同じベンダー: Hitachi
- CVE-2026-3314
Missing Password Masking in Hitachi Infrastructure Analytics - CVE-2025-1978
Remote Code Execution Vulnerability in Hitachi Storage Navig - CVE-2025-2514
Improper Restriction of Excessive Authentication Attempts vu - CVE-2025-9661
OS command injection vulneravility in the management gui (ma - CVE-2025-65116
Buffer Overflow Vulnerability in JP1/IT Desktop Management 2
同じ弱点: CWE-770
- CVE-2026-49337
libde265 has an unbounded memory leak via orphaned slice hea - CVE-2026-55205
Hermes WebUI < 0.51.468 - Resource Exhaustion via Unauthenti - CVE-2026-27869
WEB SERVICE (HTTP) DENIAL OF SERVICE VIA SLOW HEADERS ON REG - CVE-2026-48854
Unbounded request body accumulation causes memory exhaustion - CVE-2026-8683
Overly long URLs crash the Mattermost Desktop App
V. CVE-2025-7737へのコメント
まだコメントはありません