Vulnerabilities > CVE-2007-4124 - Unspecified vulnerability in Hitachi products

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

hitachi

NVD

Published: 2007-08-01

Updated: 2024-11-21

Summary

The session failover function in Cosminexus Component Container in Cosminexus 6, 6.7, and 7 before 20070731, as used in multiple Hitachi products, can use session data for the wrong user under unspecified conditions, which might allow remote authenticated users to obtain sensitive information, corrupt another user's session data, and possibly gain privileges.

Vulnerable Configurations

Part	Description	Count
Application	Hitachi Hitachi Ucosminexus Collaboration Portal * Hitachi Cosminexus Opentp1 WEB Front END SET * Hitachi Ucosminexus ERP Integrator * Hitachi Cosminexus Developer 6 Hitachi Ucosminexus Application Server * Hitachi Ucosminexus Service Platform * Hitachi Ucosminexus Developer * Hitachi Electronic Form Workflow * Hitachi Cosminexus Application Server 6 Hitachi Ucosminexus Opentp1 WEB Front END SET * Hitachi Cosminexus ERP Integrator * Hitachi Cosminexus Collaboration Portal * Hitachi Groupmax Collaboration Portal * Hitachi Ucosminexus Service Architect *	22

Summary

Vulnerable Configurations

References