CVE-2007-1854

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

03/04/2007

Last modified:

09/04/2025

Description

Unspecified vulnerability in Hitachi Cosminexus Component Container 07-00 through 07-00-10, and 07-10 through 07-10-03, as used in uCosminexus Application Server Enterprise and Standard; uCosminexus Service Platform; uCosminexus Developer Standard and Professional; uCosminexus Service Architect; Electronic Form Workflow Standard Set, Professional Library Set, and Developer Client Set; and uCosminexus ERP Integrator, does not properly manage session information, which has an unspecified impact related to "unintended other requests."

Impact

Vector 2.0

AV:N/AC:L/Au:N/C:P/I:N/A:N CVSS v2.0 Severity and Metrics:

Base Score: 5.00 MEDIUM
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Attack Vector (AV): Network
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): Physical
Integrity (I): None
Availability (A): None

Base Score 2.0

5.00

Severity 2.0

MEDIUM

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11::aix:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11::hp-ux_ipf:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11::linux:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11::windows:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::aix:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::hp-ux:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::hp-ux_ipf:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::linux:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::linux_ipf:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::windows:::::
cpe:2.3:a:hitachi:electronic_form_workflow:::developer_client_set:::::*
cpe:2.3:a:hitachi:electronic_form_workflow:::professional_library_set:::::*
cpe:2.3:a:hitachi:electronic_form_workflow:::standard_set:::::*
cpe:2.3:a:hitachi:ucosminexus_application_server:::enterprise:::::*
cpe:2.3:a:hitachi:ucosminexus_application_server:::standard:::::*

To consult the complete list of CPE names with products and versions, see this page

CPE	From	Up to
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11::aix:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11::hp-ux_ipf:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11::linux:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_00_11::windows:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::aix:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::hp-ux:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::hp-ux_ipf:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::linux:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::linux_ipf:::::
cpe:2.3:a:hitachi:cosminexus_component_container:07_10_04::windows:::::
cpe:2.3:a:hitachi:electronic_form_workflow:::developer_client_set:::::*
cpe:2.3:a:hitachi:electronic_form_workflow:::professional_library_set:::::*
cpe:2.3:a:hitachi:electronic_form_workflow:::standard_set:::::*
cpe:2.3:a:hitachi:ucosminexus_application_server:::enterprise:::::*
cpe:2.3:a:hitachi:ucosminexus_application_server:::standard:::::*

CVE-2007-1854

Description

Impact

Vulnerable products and versions

References to Advisories, Solutions, and Tools