Home

Description

XXE vulnerability in Hitachi JP1/IT Desktop Management 2 - Smart Device Manager on Windows.This issue affects JP1/IT Desktop Management 2 - Smart Device Manager: from 12-00 before 12-00-08, from 11-10 through 11-10-08, from 11-00 through 11-00-05, from 10-50 through 10-50-06.

PUBLISHED Reserved 2025-02-27 | Published 2025-05-15 | Updated 2025-05-15 | Assigner Hitachi




HIGH: 8.7CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H

Problem types

CWE-611 Improper Restriction of XML External Entity Reference

Product status

Default status
unaffected

12-00 (custom) before 12-00-08
affected

11-10 (custom)
affected

11-00 (custom)
affected

10-50 (custom)
affected

References

www.hitachi.com/...info/vuls/hitachi-sec-2025-115/index.html vendor-advisory

cve.org (CVE-2025-27523)

nvd.nist.gov (CVE-2025-27523)

Download JSON