CVE-2025-2500
CVE-2025-2500
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.1EPSS 0.3%KEV nãoPoC —Patch —
Lifecycle
30 May 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability exists in the SOAP Web services of the Asset
Suite versions listed below. If successfully exploited, an attacker
could gain unauthorized access to the product and the time window of a possible password attack could be expanded.
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected products
Hitachi Energy · Asset SuiteWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →