CVE-2025-0976
Published: 25 February 2026
Summary
CVE-2025-0976 is a medium-severity Insertion of Sensitive Information into Log File (CWE-532) vulnerability in Hitachi Configuration Manager. Its CVSS base score is 4.7 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Data from Local System (T1005); ranked at the 11.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 PE-19 (Information Leakage) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2025-0976 is an information exposure vulnerability (CWE-532) in Hitachi Ops Center API Configuration Manager and Hitachi Configuration Manager. It affects Hitachi Ops Center API Configuration Manager versions from 10.0.0-00 before 11.0.4-00 and Hitachi Configuration Manager versions from 8.6.1-00 before 11.0.5-00. The vulnerability was published on 2026-02-25T05:17:13.900 and carries a CVSS v3.1 base score of 4.7 (Medium: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N).
Exploitation requires a local attacker with low privileges to perform actions under high attack complexity, with no user interaction needed and no scope change. Successful attacks result in high confidentiality impact through exposure of sensitive information, with no impact on integrity or availability.
The Hitachi security advisory (https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2026-110/index.html) details the issue. Mitigation requires upgrading to Hitachi Ops Center API Configuration Manager 11.0.4-00 or later and Hitachi Configuration Manager 11.0.5-00 or later.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-208108
Vulnerability details
Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager.This issue affects Hitachi Ops Center API Configuration Manager: from 10.0.0-00 before 11.0.4-00; Hitachi Configuration Manager: from 8.6.1-00 before 11.0.5-00.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Local information exposure vulnerability (CWE-532) directly enables collection of sensitive data from system files/logs.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly requires timely remediation of software flaws such as the information-exposure defect fixed by upgrading to the patched Hitachi versions.
Explicitly mandates controls to stop sensitive information from leaking to unauthorized local users, matching the CWE-532 exposure in configuration-manager logs/files.
Enforces least-privilege restrictions on local accounts, limiting the attacker's ability to reach the exposed sensitive data even if the flaw remains.