Vulnerabilities > CVE-2007-1786 - Products Unspecified SQL Injection vulnerability in Hitachi

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

hitachi

NVD

Published: 2007-03-31

Updated: 2017-07-29

Summary

SQL injection vulnerability in Hitachi Collaboration - Online Community Management 01-00 through 01-30, as used in Groupmax Collaboration Portal, Groupmax Collaboration Web Client, uCosminexus Collaboration Portal, Cosminexus Collaboration Portal, and uCosminexus Content Manager, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
Application	Hitachi Hitachi Cosminexus Collaboration Portal * Hitachi Groupmax Collaboration Portal * Hitachi Groupmax Collaboration WEB Client * Hitachi Ucosminexus Collaboration Portal * Hitachi Ucosminexus Content Manager *	5

References

http://osvdb.org/34544
http://secunia.com/advisories/24693
http://www.hitachi-support.com/security_e/vuls_e/HS07-008_e/index-e.html
http://www.securityfocus.com/bid/23208
http://www.vupen.com/english/advisories/2007/1168
https://exchange.xforce.ibmcloud.com/vulnerabilities/33348