Hitachi Energy SuprOS
Summary
Hitachi Energy is aware of a vulnerability in SuprOS product versions (<=9.2.1, 9.2.2.0) related to the use of default credentials (CVE-2025-7740), which could allow an attacker to compromise confidentiality, integrity, and availability. Mitigation steps include removing unwanted accounts, changing default passwords, and applying the vendor's update.
IFF Assessment
A vulnerability exists that can be exploited, leading to potential compromise of systems.
Severity
Defender Context
This vulnerability involves the use of default credentials in Hitachi Energy's SuprOS, a product used in critical infrastructure sectors like energy and transportation. Defenders need to ensure default passwords are changed immediately and unwanted accounts are removed. The use of default credentials is a common vulnerability and organizations should regularly audit and enforce strong password policies.