Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.4
CVSSv2

CVE-2007-4563

Published: 28/08/2007 Updated: 29/07/2017
CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4
VMScore: 392
Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Cosminexus Application Server Enterprise

Vulnerability Summary

Cosminexus Manager in Cosminexus Application Server 06-50 and later might assign the wrong user's group permissions to logical J2EE server processes, which allows local users to gain privileges.

Vulnerable Product Search on Vulmon Subscribe to Product

hitachi cosminexus application server enterprise 06_50

hitachi cosminexus application server enterprise 06_50_f

hitachi cosminexus application server enterprise 06_51

hitachi cosminexus application server standard 06_50_b

hitachi cosminexus application server standard 06_50_c

hitachi cosminexus application server standard 06_51_b_1

hitachi cosminexus application server standard 06_51_c

hitachi ucosminexus application server enterprise 06_70_a

hitachi ucosminexus application server enterprise 06_71

hitachi ucosminexus application server enterprise 06_71_b

hitachi ucosminexus application server enterprise 07-00-01

hitachi ucosminexus application server enterprise 07_00

hitachi ucosminexus application server enterprise 07_10

hitachi ucosminexus application server standard 06_70_b

hitachi ucosminexus application server standard 06_71_b

hitachi ucosminexus application server standard 06_72_1

hitachi ucosminexus application server standard 07_00

hitachi ucosminexus application server standard 07_00_1

hitachi ucosminexus service platform 07_10

hitachi cosminexus application server enterprise 06_50_c_1

hitachi cosminexus application server enterprise 06_50_e_1

hitachi cosminexus application server standard 06_50

hitachi cosminexus application server standard 06_51

hitachi ucosminexus application server enterprise 06_70

hitachi ucosminexus application server enterprise 06_70_d

hitachi ucosminexus application server enterprise 06_70_g

hitachi ucosminexus application server enterprise 06_72_b

hitachi ucosminexus application server enterprise 06_72_g

hitachi ucosminexus application server standard 06_70_a

hitachi ucosminexus application server standard 06_70_d

hitachi ucosminexus application server standard 06_71

hitachi ucosminexus service platform 07_00

hitachi cosminexus application server enterprise 06_50_b

hitachi cosminexus application server enterprise 06_51_b_1

hitachi cosminexus application server enterprise 06_51_c

hitachi cosminexus application server standard 06_50_c_1

hitachi electronic form workflow - standard set 07_00

hitachi electronic form workflow - standard set 07_00_b

hitachi ucosminexus application server enterprise 06_70_b

hitachi ucosminexus application server enterprise 06_71_c

hitachi ucosminexus application server enterprise 07_10_06

hitachi ucosminexus application server enterprise 07_10_08

hitachi ucosminexus application server standard 06_72_b_1

hitachi ucosminexus application server standard 06_72_c

hitachi ucosminexus application server standard 07_10

hitachi cosminexus application server enterprise 06_50_c

hitachi cosminexus application server standard 06_50_e_1

hitachi cosminexus application server standard 06_50_f

hitachi electronic form workflow -professional library set 07_00

hitachi electronic form workflow -professional library set 07_00_b

hitachi ucosminexus application server enterprise 06_70_b_1

hitachi ucosminexus application server enterprise 06_72_1

hitachi ucosminexus application server enterprise 07_00_12

hitachi ucosminexus application server enterprise 07_10_1

hitachi ucosminexus application server standard 06_70

hitachi ucosminexus application server standard 06_70_b_1

hitachi ucosminexus application server standard 06_70_c

hitachi ucosminexus application server standard 06_72_d

hitachi ucosminexus application server standard 06_72_g

References

CWE-264http://www.hitachi-support.com/security_e/vuls_e/HS07-025_e/index-e.htmlhttp://www.securityfocus.com/bid/25434http://secunia.com/advisories/26589http://osvdb.org/37854https://exchange.xforce.ibmcloud.com/vulnerabilities/36245https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700CVE-2022-48689CVE-2024-27956CVE-2023-6363SQLNULL pointer dereferenceCVE-2023-41830CVE-2015-2051arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook