CVE-2007-1854

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2007-1854
Unspecified vulnerability in Hitachi Cosminexus Component Container 07-00 through 07-00-10, and 07-10 through 07-10-03, as used in uCosminexus Application Server Enterprise and Standard; uCosminexus Service Platform; uCosminexus Developer Standard and Professional; uCosminexus Service Architect; Electronic Form Workflow Standard Set, Professional Library Set, and Developer Client Set; and uCosminexus ERP Integrator, does not properly manage session information, which has an unspecified impact related to "unintended other requests."

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References
Link Resource
http://osvdb.org/34768
http://secunia.com/advisories/24683 Vendor Advisory
http://www.hitachi-support.com/security_e/vuls_e/HS07-006_e/index-e.html
http://www.securityfocus.com/bid/23213
http://www.vupen.com/english/advisories/2007/1170
https://exchange.xforce.ibmcloud.com/vulnerabilities/33318
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11:*:aix:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11:*:hp-ux_ipf:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11:*:linux:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11:*:windows:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:aix:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:hp-ux:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:hp-ux_ipf:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:linux:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:linux_ipf:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:windows:*:*:*:*:*
cpe:2.3:a:hitachi:electronic_form_workflow:*:*:developer_client_set:*:*:*:*:*
cpe:2.3:a:hitachi:electronic_form_workflow:*:*:professional_library_set:*:*:*:*:*
cpe:2.3:a:hitachi:electronic_form_workflow:*:*:standard_set:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:*:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:*:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:*:*:professional:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:*:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_erp_integrator:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_service_architect:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_service_platform:*:*:*:*:*:*:*:*
History

No history.

Information

Published : 2007-04-03 16:19

Updated : 2023-12-10 10:40

NVD link : CVE-2007-1854

Mitre link : CVE-2007-1854

CVE.ORG link : CVE-2007-1854

JSON object : View

Products Affected

hitachi

  • electronic_form_workflow
  • ucosminexus_developer
  • cosminexus_component_container
  • ucosminexus_service_architect
  • ucosminexus_service_platform
  • ucosminexus_erp_integrator
  • ucosminexus_application_server
CWE
NVD-CWE-Other