CVE-2025-10217 MEDIUM

CVE-2025-10217

Vendor Hitachi Energy
Product Asset Suite
Weakness CWE-117
Published September 30, 2025
Last update October 28, 2025

CVSS base score

6.0/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

A vulnerability exists in Asset Suite for an authenticated user to manipulate the content of performance related log data or to inject crafted data in logfile for potentially carrying out further malicious attacks. Performance logging is typically enabled for troubleshooting purposes while resolving application performance related issues.

Key dates

02Disclosure timeline

September 30, 2025 CVE published
October 28, 2025 Record updated