Unspecified vulnerability in Hitachi Cosminexus Component Container 07-00 through 07-00-10, and 07-10 through 07-10-03, as used in uCosminexus Application Server Enterprise and Standard; uCosminexus Service Platform; uCosminexus Developer Standard and Professional; uCosminexus Service Architect; Electronic Form Workflow Standard Set, Professional Library Set, and Developer Client Set; and uCosminexus ERP Integrator, does not properly manage session information, which has an unspecified impact related to "unintended other requests."

Metrics

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Hitachi
  • Cosminexus Component Container
  • Electronic Form Workflow
  • Ucosminexus Application Server
  • Ucosminexus Developer
  • Ucosminexus Erp Integrator
  • Ucosminexus Service Architect
  • Ucosminexus Service Platform

Configuration 1 [-]

OR cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11:*:aix:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11:*:hp-ux_ipf:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11:*:linux:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11:*:windows:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:aix:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:hp-ux:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:hp-ux_ipf:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:linux:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:linux_ipf:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04:*:windows:*:*:*:*:*
cpe:2.3:a:hitachi:electronic_form_workflow:*:*:developer_client_set:*:*:*:*:*
cpe:2.3:a:hitachi:electronic_form_workflow:*:*:professional_library_set:*:*:*:*:*
cpe:2.3:a:hitachi:electronic_form_workflow:*:*:standard_set:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:*:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:*:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:*:*:professional:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:*:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_erp_integrator:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_service_architect:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_service_platform:*:*:*:*:*:*:*:*

No data.

References
Link Providers
http://osvdb.org/34768 cve-icon cve-icon
http://secunia.com/advisories/24683 cve-icon cve-icon
http://www.hitachi-support.com/security_e/vuls_e/HS07-006_e/index-e.html cve-icon cve-icon
http://www.securityfocus.com/bid/23213 cve-icon cve-icon
http://www.vupen.com/english/advisories/2007/1170 cve-icon cve-icon
https://exchange.xforce.ibmcloud.com/vulnerabilities/33318 cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-04-03T16:00:00

Updated: 2024-08-07T13:13:41.560Z

Reserved: 2007-04-03T00:00:00

Link: CVE-2007-1854

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2007-04-03T16:19:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-1854

cve-icon Redhat

No data.