vulnerability🌐InternationalHeise Security
Patches: Hitachi Infrastructure Analytics and Ops Center are Vulnerable
Tuesday, December 23, 2025
What
Hitachi reported vulnerabilities in their Infrastructure Analytics and Ops Center software that could be exploited through XSS attacks and authentication bypass. The vulnerabilities are classified as high severity, indicating a significant risk to users. While a patch for Ops Center Analyzer is available, it is uncertain whether a fix for Infrastructure Analytics Advisor exists, leaving potential users exposed.
Where
Global, affecting users of Hitachi's software products.
When
Reported recently, with a patch available for version 11.0.5-00 of Ops Center Analyzer.
Key Factors
- •CVE-2025-66444 allows for Cross-Site Scripting (XSS) attacks.
- •CVE-2025-66445 enables authentication bypass.
- •Patch status for Infrastructure Analytics Advisor is currently unknown.
Takeaways
- →Users should promptly apply available patches to mitigate risks.
- →Organizations using Hitachi's software must stay informed about vulnerability disclosures and patch availability.
- →Regularly review and update security measures to protect against known vulnerabilities.
Read Full Article
Opens original article on Heise Security
