GCVE - cpe:2.3:a:hitachi_energy:asset_suite:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:hitachi_energy:asset_suite:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Hitachi Energy (`57ae0a6c-1cbf-5100-9bbb-0f210f6013d6`)
Product	Asset Suite (`705eb86d-c202-5087-b130-079177051133`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-2500`	vulnerable	2026-06-03 15:00:25.611299	Details available HIGH (7.4) A vulnerability exists in the SOAP Web services of the Asset Suite versions listed below. If successfully exploited, an attacker could gain unauthorized access to the product and the time window of a possible password attack could be expanded. Published: 2025-05-30T12:29:21.370Z Updated: 2025-05-30T13:22:19.268Z Open on db.gcve.eu Reference links https://publisher.hitachienergy.com/preview?DocumentID=8DBD000212&LanguageCode=en&DocumentPartId=&Action=Launch	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-1484`	vulnerable	2026-06-03 14:59:05.575149	Details available MEDIUM (6.5) A vulnerability exists in the media upload component of the Asset Suite versions listed below. If successfully exploited an attacker could impact the confidentiality or integrity of the system. An attacker can use this vulnerability to construct a request that will cause JavaScript code supplied by the attacker to execute within the user’s browser in the context of that user’s session with the application. Published: 2025-05-30T12:26:42.536Z Updated: 2025-05-30T13:22:41.411Z Open on db.gcve.eu Reference links https://publisher.hitachienergy.com/preview?DocumentID=8DBD000212&LanguageCode=en&DocumentPartId=&Action=Launch	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-10217`	vulnerable	2026-06-03 14:58:33.743057	Details available A vulnerability exists in Asset Suite for an authenticated user to manipulate the content of performance related log data or to inject crafted data in logfile for potentially carrying out further malicious attacks. Performance logging is typically enabled for troubleshooting purposes while resolving application performance related issues. Published: 2025-09-30T12:10:23.803Z Updated: 2025-10-28T10:28:45.480Z Open on db.gcve.eu Reference links https://publisher.hitachienergy.com/preview?DocumentID=8DBD000226&LanguageCode=en&DocumentPartId=&Action=Launch	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.