CVE-2025-7740
Unknown
Unknown - Not Provided
Default Credentials Vulnerability in SuprOS Enables Admin Access
Publication date: 2026-01-28
Last updated on: 2026-01-28
Assigner: Hitachi Energy
Description
Description
Default credentials vulnerability exists in SuprOS
product. If exploited, this could allow an authenticated
local attacker to use an admin account created during
product deployment.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| hitachienergy | supros | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-1392 | The product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a default credentials issue in the SuprOS product. It allows an authenticated local attacker to use an admin account that was created during the product deployment, potentially gaining elevated privileges.
How can this vulnerability impact me? :
If exploited, this vulnerability could allow a local attacker with some authentication to gain administrative access, which could lead to unauthorized control over the system, data compromise, or disruption of services.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70