CVE-2007-4124

N/A Unknown

Published: August 01, 2007 Modified: April 23, 2026

Description

The session failover function in Cosminexus Component Container in Cosminexus 6, 6.7, and 7 before 20070731, as used in multiple Hitachi products, can use session data for the wrong user under unspecified conditions, which might allow remote authenticated users to obtain sensitive information, corrupt another user's session data, and possibly gain privileges.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/37852

Source: cve@mitre.org

http://secunia.com/advisories/26250

Source: cve@mitre.org

Vendor Advisory

http://www.hitachi-support.com/security_e/vuls_e/HS07-024_e/index-e.html

Source: cve@mitre.org

Patch Vendor Advisory

http://www.securityfocus.com/bid/25145

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/2725

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/35706

Source: cve@mitre.org

http://osvdb.org/37852

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/26250

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.hitachi-support.com/security_e/vuls_e/HS07-024_e/index-e.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://www.securityfocus.com/bid/25145

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/2725

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/35706

Source: af854a3a-2127-422b-91ae-364da2661108

12 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.4%

61th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

hitachi