← back
CVE-2025-10217

CVE-2025-10217

CVSS 6 MEDIUMEPSS 0.3%CWE-117
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
30 Sep 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability exists in Asset Suite for an authenticated user to manipulate the content of performance related log data or to inject crafted data in logfile for potentially carrying out further malicious attacks. Performance logging is typically enabled for troubleshooting purposes while resolving application performance related issues.
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
Affected products
Hitachi Energy · Asset Suite

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://publisher.hitachienergy.com/preview?DocumentID=8DBD000226&LanguageCode=en&DocumentPartId=&Action=Launch