Unrated severityNVD Advisory· Published Aug 1, 2007· Updated Jun 16, 2026
CVE-2007-4124
CVE-2007-4124
Description
The session failover function in Cosminexus Component Container in Cosminexus 6, 6.7, and 7 before 20070731, as used in multiple Hitachi products, can use session data for the wrong user under unspecified conditions, which might allow remote authenticated users to obtain sensitive information, corrupt another user's session data, and possibly gain privileges.
Affected products
24cpe:2.3:a:hitachi:cosminexus_application_server:6:*:enterprise:*:*:*:*:*+ 3 more
- cpe:2.3:a:hitachi:cosminexus_application_server:6:*:enterprise:*:*:*:*:*
- cpe:2.3:a:hitachi:cosminexus_application_server:6:*:standard:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_application_server:*:*:enterprise:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_application_server:*:*:standard:*:*:*:*:*
- cpe:2.3:a:hitachi:cosminexus_collaboration_portal:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:6:*:light:*:*:*:*:*+ 5 more
- cpe:2.3:a:hitachi:cosminexus_developer:6:*:light:*:*:*:*:*
- cpe:2.3:a:hitachi:cosminexus_developer:6:*:professional:*:*:*:*:*
- cpe:2.3:a:hitachi:cosminexus_developer:6:*:standard:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_developer:*:*:light:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_developer:*:*:professional:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_developer:*:*:standard:*:*:*:*:*
- cpe:2.3:a:hitachi:cosminexus_erp_integrator:*:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:cosminexus_opentp1_web_front-end_set:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:electronic_form_workflow:*:*:developer_client_set:*:*:*:*:*+ 2 more
- cpe:2.3:a:hitachi:electronic_form_workflow:*:*:developer_client_set:*:*:*:*:*
- cpe:2.3:a:hitachi:electronic_form_workflow:*:*:professional_library_set:*:*:*:*:*
- cpe:2.3:a:hitachi:electronic_form_workflow:*:*:standard_set:*:*:*:*:*
- cpe:2.3:a:hitachi:groupmax_collaboration_portal:*:*:server:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_collaboration_portal:*:*:server:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_erp_integrator:*:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_opentp1_web_front-end_set:*:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_service_architect:*:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi:ucosminexus_service_platform:*:*:*:*:*:*:*:*
- Range: <20070731
- Range: <20070731
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.