Vulnerability in Hitachi Cosminexus_application_server
CVE-2007-4124
The session failover function in Cosminexus Component Container in Cosminexus 6, 6.7, and 7 before 20070731, as used in multiple Hitachi products, can use session data for the wrong user under unspecified conditions, which might allow remo…
EPSS: 0.010 (58.7th percentile) — read the EPSS interpretation.
Affected products
- Hitachi Cosminexus_application_server — versions 6
- Hitachi Cosminexus_collaboration_portal
- Hitachi Cosminexus_developer — versions 6
- Hitachi Cosminexus_erp_integrator
- Hitachi Cosminexus_opentp1_web_front-end_set
- Hitachi Electronic_form_workflow
- Hitachi Groupmax_collaboration_portal
- Hitachi Ucosminexus_application_server
- Hitachi Ucosminexus_collaboration_portal
- Hitachi Ucosminexus_developer
References
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)