JVNDB-2026-002030

Multiple Vulnerabilities in Cosminexus

Multiple vulnerabilities exist in Cosminexus Component Container.

CVE-2025-48988, CVE-2025-48976

Affected products and versions are listed below. Please upgrade your version to the appropriate version.
These vulnerabilities exist in Cosminexus Component Container which is a component product of other Hitachi products.
For details about the fixed version about Cosminexus products, contact your Hitachi support service representative.

The information is organized under the following headings:

Hitachi, Ltd

• uCosminexus Application Server Windows(x64) 09-00 - 11-60-01
• uCosminexus Application Server Windows 09-00 - 09-70-03
• uCosminexus Application Server Linux 09-00 - 11-60
• uCosminexus Application Server AIX 09-00 - 11-00-02
• uCosminexus Application Server HP-UX(IPF) 09-00 - 09-50-02
• uCosminexus Application Server(64) Windows(x64) 09-00 - 11-60-01
• uCosminexus Application Server(64) Windows 09-00 - 09-70-03
• uCosminexus Application Server(64) Linux 09-00 - 11-60
• uCosminexus Application Server(64) AIX 09-00 - 11-00-02
• uCosminexus Application Server(64) HP-UX(IPF) 09-00 - 09-50-02
• uCosminexus Application Server-R Windows(x64) 09-00 - 11-60-01
• uCosminexus Application Server-R Windows 09-00 - 09-70-03
• uCosminexus Application Server-R Linux 09-00 - 11-60
• uCosminexus Application Server-R AIX 09-00 - 11-00-02
• uCosminexus Application Server-R HP-UX(IPF) 09-00 - 09-50-02
• uCosminexus Developer Windows(x64) 09-00 - 11-60-01
• uCosminexus Developer Windows 09-00 - 09-70-03
• uCosminexus Developer Linux 09-00 - 11-60
• uCosminexus Developer AIX 09-00 - 11-00-02
• uCosminexus Developer HP-UX(IPF) 09-00 - 09-50-02
• uCosminexus Primary Server Base Windows(x64) 09-00 - 11-60-01
• uCosminexus Primary Server Base Windows 09-00 - 09-70-03
• uCosminexus Primary Server Base Linux 09-00 - 11-60
• uCosminexus Primary Server Base AIX 09-00 - 11-00-02
• uCosminexus Primary Server Base HP-UX(IPF) 09-00 - 09-50-02
• uCosminexus Primary Server Base(64) Windows(x64) 09-00 - 11-60-01
• uCosminexus Primary Server Base(64) Windows 09-00 - 09-70-03
• uCosminexus Primary Server Base(64) Linux 09-00 - 11-60
• uCosminexus Primary Server Base(64) AIX 09-00 - 11-00-02
• uCosminexus Primary Server Base(64) HP-UX(IPF) 09-00 - 09-50-02
• uCosminexus Service Architect Windows(x64) 09-00 - 11-60-01
• uCosminexus Service Architect Windows 09-00 - 09-70-03
• uCosminexus Service Architect Linux 09-00 - 11-60
• uCosminexus Service Architect AIX 09-00 - 11-00-02
• uCosminexus Service Architect HP-UX(IPF) 09-00 - 09-50-02
• uCosminexus Service Platform Windows(x64) 09-00 - 11-60-01
• uCosminexus Service Platform Windows 09-00 - 09-70-03
• uCosminexus Service Platform Linux 09-00 - 11-60
• uCosminexus Service Platform AIX 09-00 - 11-00-02
• uCosminexus Service Platform HP-UX(IPF) 09-00 - 09-50-02
• uCosminexus Service Platform(64) Windows(x64) 09-00 - 11-60-01
• uCosminexus Service Platform(64) Windows 09-00 - 09-70-03
• uCosminexus Service Platform(64) Linux 09-00 - 11-60
• uCosminexus Service Platform(64) AIX 09-00 - 11-00-02
• uCosminexus Service Platform(64) HP-UX(IPF) 09-00 - 09-50-02
• Programming Environment for Java Windows(x64) 09-00 - 11-60-01
• Programming Environment for Java Windows 09-00 - 09-70-03
• Programming Environment for Java Linux 09-00 - 11-60
• Programming Environment for Java AIX 09-00 - 11-00-02
• Programming Environment for Java HP-UX(IPF) 09-00 - 09-50-02

Please refer to Vendor Information for more details.

Regarding the impact of the vulnerability, please refer to the vendor advisory.

Please refer to the 'Vendor Information' section for the official countermeasure and take appropriate action.

Hitachi, Ltd

• Hitachi Software Vulnerability Information : hitachi-sec-2026-103

1. CVE-2025-48976
2. CVE-2025-48988

• [2026/01/29]
    Web page was published