What is the severity of CVE-2007-4124?

CVE-2007-4124 is classified as a medium severity vulnerability that can potentially allow unauthorized access to sensitive information.

How do I fix CVE-2007-4124?

To fix CVE-2007-4124, update to a version of Hitachi Cosminexus that addresses this vulnerability, specifically versions released after July 31, 2007.

Who is affected by CVE-2007-4124?

CVE-2007-4124 affects users of Hitachi Cosminexus versions 6, 6.7, and 7 released before July 31, 2007.

What kind of impact does CVE-2007-4124 have?

The impact of CVE-2007-4124 includes the possibility of remote authenticated users gaining access to the session data of other users.

Is there a workaround for CVE-2007-4124?

Currently, there are no known workarounds for CVE-2007-4124 other than updating to a patched version.

Vulnerability/
CVE-2007-4124

medium

4.9

CWE

NVD-CWE-Other

1/8/2007

7/8/2024

CVE-2007-4124

First published: Wed Aug 01 2007(Updated: )

The session failover function in Cosminexus Component Container in Cosminexus 6, 6.7, and 7 before 20070731, as used in multiple Hitachi products, can use session data for the wrong user under unspecified conditions, which might allow remote authenticated users to obtain sensitive information, corrupt another user's session data, and possibly gain privileges.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Hitachi Cosminexus Server	=6
Hitachi Cosminexus Server	=6
Hitachi uCosminexus Collaboration Portal
Hitachi Cosminexus Developer	=6
Hitachi Cosminexus Developer	=6
Hitachi Cosminexus Developer	=6
Hitachi uCosminexus ERP Integrator
Hitachi Ucosminexus Opentp1 Web Front-end Set
Hitachi Electronic Form Workflow - Professional Library Set
Hitachi Electronic Form Workflow - Professional Library Set
Hitachi Electronic Form Workflow - Professional Library Set
Hitachi Groupmax collaboration
Hitachi uCosminexus
Hitachi uCosminexus
Hitachi uCosminexus Collaboration Portal
Hitachi ucosminexus Developer professional
Hitachi ucosminexus Developer professional
Hitachi ucosminexus Developer professional
Hitachi uCosminexus ERP Integrator
Hitachi uCosminexus/OpenTP1 Web Front-end Set
Hitachi uCosminexus Service Architect
Hitachi ucosminexus service platform

Remedy

http://www.hitachi-support.com/security_e/vuls_e/HS07-024_e/index-e.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-4124?
CVE-2007-4124 is classified as a medium severity vulnerability that can potentially allow unauthorized access to sensitive information.
How do I fix CVE-2007-4124?
To fix CVE-2007-4124, update to a version of Hitachi Cosminexus that addresses this vulnerability, specifically versions released after July 31, 2007.
Who is affected by CVE-2007-4124?
CVE-2007-4124 affects users of Hitachi Cosminexus versions 6, 6.7, and 7 released before July 31, 2007.
What kind of impact does CVE-2007-4124 have?
The impact of CVE-2007-4124 includes the possibility of remote authenticated users gaining access to the session data of other users.
Is there a workaround for CVE-2007-4124?
Currently, there are no known workarounds for CVE-2007-4124 other than updating to a patched version.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/remedy
agent/author
agent/weakness
agent/severity
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/hitachi
canonical/hitachi cosminexus server
version/hitachi cosminexus server/6
canonical/hitachi ucosminexus collaboration portal
canonical/hitachi cosminexus developer
version/hitachi cosminexus developer/6
canonical/hitachi ucosminexus erp integrator
canonical/hitachi ucosminexus opentp1 web front-end set
canonical/hitachi electronic form workflow - professional library set
canonical/hitachi groupmax collaboration
canonical/hitachi ucosminexus
canonical/hitachi ucosminexus developer professional
canonical/hitachi ucosminexus/opentp1 web front-end set
canonical/hitachi ucosminexus service architect
canonical/hitachi ucosminexus service platform

Frequently Asked Questions

What is the severity of CVE-2007-4124?
CVE-2007-4124 is classified as a medium severity vulnerability that can potentially allow unauthorized access to sensitive information.
How do I fix CVE-2007-4124?
To fix CVE-2007-4124, update to a version of Hitachi Cosminexus that addresses this vulnerability, specifically versions released after July 31, 2007.
Who is affected by CVE-2007-4124?
CVE-2007-4124 affects users of Hitachi Cosminexus versions 6, 6.7, and 7 released before July 31, 2007.
What kind of impact does CVE-2007-4124 have?
The impact of CVE-2007-4124 includes the possibility of remote authenticated users gaining access to the session data of other users.
Is there a workaround for CVE-2007-4124?
Currently, there are no known workarounds for CVE-2007-4124 other than updating to a patched version.

CVE-2007-4124

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-4124?

How do I fix CVE-2007-4124?

Who is affected by CVE-2007-4124?

What kind of impact does CVE-2007-4124 have?

Is there a workaround for CVE-2007-4124?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2007-4124?

How do I fix CVE-2007-4124?

Who is affected by CVE-2007-4124?

What kind of impact does CVE-2007-4124 have?

Is there a workaround for CVE-2007-4124?