CVE-2026-1166
Open Redirect Vulnerability in Hitachi Ops Center Administrator
Publication date: 2026-03-25
Last updated on: 2026-03-25
Assigner: Hitachi, Ltd.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| hitachi | ops_center_administrator | From 10.2.0 (inc) to 11.0.8 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-601 | The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-1166 is an Open Redirect vulnerability found in Hitachi Ops Center Administrator versions from 10.2.0 up to but not including 11.0.8 on Linux.
This vulnerability allows an attacker to redirect users to unintended URLs, which can be exploited for phishing or other malicious activities.
It has a CVSS 3.1 base score of 4.3, indicating medium severity, and requires no privileges but does require user interaction.
How can this vulnerability impact me? :
The vulnerability can impact you by allowing attackers to redirect users of Hitachi Ops Center Administrator to malicious or unintended websites.
This can lead to phishing attacks or other malicious activities that exploit user trust.
While it does not affect confidentiality or availability, it has a low impact on integrity.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
To mitigate the Open Redirect vulnerability in Hitachi Ops Center Administrator, you should upgrade the software to version 11.0.8 or later, as this version contains the fix for the issue.
No workarounds are provided, so upgrading is the recommended immediate action.