Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2007-4563
HistoryAug 28, 2007 - 1:17 a.m.

CVE-2007-4563

2007-08-2801:17:00
CWE-264
mitre
web.nvd.nist.gov
28
cve-2007-4563
cosminexus manager
application server
group permissions
security vulnerability

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.5

Confidence

High

EPSS

0

Percentile

5.1%

JSON

Cosminexus Manager in Cosminexus Application Server 06-50 and later might assign the wrong user’s group permissions to logical J2EE server processes, which allows local users to gain privileges.

Affected configurations

Nvd
Node
hitachicosminexus_application_server_enterpriseMatch06_50aix
OR
hitachicosminexus_application_server_enterpriseMatch06_50hpux
OR
hitachicosminexus_application_server_enterpriseMatch06_50linux
OR
hitachicosminexus_application_server_enterpriseMatch06_50linux_ipf
OR
hitachicosminexus_application_server_enterpriseMatch06_50solaris
OR
hitachicosminexus_application_server_enterpriseMatch06_50_blinux_ipf
OR
hitachicosminexus_application_server_enterpriseMatch06_50_clinux
OR
hitachicosminexus_application_server_enterpriseMatch06_50_c_1hpux_ipf
OR
hitachicosminexus_application_server_enterpriseMatch06_50_c_1solaris
OR
hitachicosminexus_application_server_enterpriseMatch06_50_e_1hpux
OR
hitachicosminexus_application_server_enterpriseMatch06_50_faix
OR
hitachicosminexus_application_server_enterpriseMatch06_51linux_ipf
OR
hitachicosminexus_application_server_enterpriseMatch06_51_b_1linux_ipf
OR
hitachicosminexus_application_server_enterpriseMatch06_51_clinux
OR
hitachicosminexus_application_server_standardMatch06_50aix
OR
hitachicosminexus_application_server_standardMatch06_50hpux
OR
hitachicosminexus_application_server_standardMatch06_50hpux_ipf
OR
hitachicosminexus_application_server_standardMatch06_50linux
OR
hitachicosminexus_application_server_standardMatch06_50linux_ipf
OR
hitachicosminexus_application_server_standardMatch06_50_blinux_ipf
OR
hitachicosminexus_application_server_standardMatch06_50_clinux
OR
hitachicosminexus_application_server_standardMatch06_50_c_1hpux_ipf
OR
hitachicosminexus_application_server_standardMatch06_50_c_1solaris
OR
hitachicosminexus_application_server_standardMatch06_50_e_1hpux
OR
hitachicosminexus_application_server_standardMatch06_50_faix
OR
hitachicosminexus_application_server_standardMatch06_51linux
OR
hitachicosminexus_application_server_standardMatch06_51linux_ipf
OR
hitachicosminexus_application_server_standardMatch06_51_b_1linux
OR
hitachicosminexus_application_server_standardMatch06_51_clinux
OR
hitachielectronic_form_workflow_-_standard_setMatch07_00linux
OR
hitachielectronic_form_workflow_-_standard_setMatch07_00_blinux
OR
hitachielectronic_form_workflow_-professional_library_setMatch07_00linux
OR
hitachielectronic_form_workflow_-professional_library_setMatch07_00_blinux
OR
hitachiucosminexus_application_server_enterpriseMatch06_70aix
OR
hitachiucosminexus_application_server_enterpriseMatch06_70solaris
OR
hitachiucosminexus_application_server_enterpriseMatch06_70_aaix
OR
hitachiucosminexus_application_server_enterpriseMatch06_70_asolaris
OR
hitachiucosminexus_application_server_enterpriseMatch06_70_baix
OR
hitachiucosminexus_application_server_enterpriseMatch06_70_bhpux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch06_70_blinux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch06_70_bsolaris
OR
hitachiucosminexus_application_server_enterpriseMatch06_70_b_1linux
OR
hitachiucosminexus_application_server_enterpriseMatch06_70_daix
OR
hitachiucosminexus_application_server_enterpriseMatch06_70_ghpux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch06_71linux
OR
hitachiucosminexus_application_server_enterpriseMatch06_71_bhpux
OR
hitachiucosminexus_application_server_enterpriseMatch06_71_blinux
OR
hitachiucosminexus_application_server_enterpriseMatch06_71_csolaris
OR
hitachiucosminexus_application_server_enterpriseMatch06_72_1hpux
OR
hitachiucosminexus_application_server_enterpriseMatch06_72_blinux
OR
hitachiucosminexus_application_server_enterpriseMatch06_72_blinux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch06_72_ghpux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch07-00-01linux
OR
hitachiucosminexus_application_server_enterpriseMatch07_00aix
OR
hitachiucosminexus_application_server_enterpriseMatch07_00hpux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch07_00linux
OR
hitachiucosminexus_application_server_enterpriseMatch07_00solaris
OR
hitachiucosminexus_application_server_enterpriseMatch07_00_12hpux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch07_10aix
OR
hitachiucosminexus_application_server_enterpriseMatch07_10hpux
OR
hitachiucosminexus_application_server_enterpriseMatch07_10hpux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch07_10linux
OR
hitachiucosminexus_application_server_enterpriseMatch07_10linux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch07_10_1linux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch07_10_06linux_ipf
OR
hitachiucosminexus_application_server_enterpriseMatch07_10_08hpux_ipf
OR
hitachiucosminexus_application_server_standardMatch06_70solaris
OR
hitachiucosminexus_application_server_standardMatch06_70_aaix
OR
hitachiucosminexus_application_server_standardMatch06_70_asolaris
OR
hitachiucosminexus_application_server_standardMatch06_70_baix
OR
hitachiucosminexus_application_server_standardMatch06_70_bhpux
OR
hitachiucosminexus_application_server_standardMatch06_70_blinux_ipf
OR
hitachiucosminexus_application_server_standardMatch06_70_bsolaris
OR
hitachiucosminexus_application_server_standardMatch06_70_b_1linux
OR
hitachiucosminexus_application_server_standardMatch06_70_csolaris
OR
hitachiucosminexus_application_server_standardMatch06_70_daix
OR
hitachiucosminexus_application_server_standardMatch06_71linux
OR
hitachiucosminexus_application_server_standardMatch06_71_blinux
OR
hitachiucosminexus_application_server_standardMatch06_72_1hpux
OR
hitachiucosminexus_application_server_standardMatch06_72_b_1linux
OR
hitachiucosminexus_application_server_standardMatch06_72_csolaris
OR
hitachiucosminexus_application_server_standardMatch06_72_daix
OR
hitachiucosminexus_application_server_standardMatch06_72_ghpux_ipf
OR
hitachiucosminexus_application_server_standardMatch07_00aix
OR
hitachiucosminexus_application_server_standardMatch07_00hpux_ipf
OR
hitachiucosminexus_application_server_standardMatch07_00linux
OR
hitachiucosminexus_application_server_standardMatch07_00solaris
OR
hitachiucosminexus_application_server_standardMatch07_00_1linux
OR
hitachiucosminexus_application_server_standardMatch07_10hpux
OR
hitachiucosminexus_application_server_standardMatch07_10hpux_ipf
OR
hitachiucosminexus_application_server_standardMatch07_10linux
OR
hitachiucosminexus_application_server_standardMatch07_10linux_ipf
OR
hitachiucosminexus_service_platformMatch07_00linux
OR
hitachiucosminexus_service_platformMatch07_10aix
OR
hitachiucosminexus_service_platformMatch07_10linux
VendorProductVersionCPE
hitachicosminexus_application_server_enterprise06_50cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50:*:aix:*:*:*:*:*
hitachicosminexus_application_server_enterprise06_50cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50:*:hpux:*:*:*:*:*
hitachicosminexus_application_server_enterprise06_50cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50:*:linux:*:*:*:*:*
hitachicosminexus_application_server_enterprise06_50cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50:*:linux_ipf:*:*:*:*:*
hitachicosminexus_application_server_enterprise06_50cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50:*:solaris:*:*:*:*:*
hitachicosminexus_application_server_enterprise06_50_bcpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50_b:*:linux_ipf:*:*:*:*:*
hitachicosminexus_application_server_enterprise06_50_ccpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50_c:*:linux:*:*:*:*:*
hitachicosminexus_application_server_enterprise06_50_c_1cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50_c_1:*:hpux_ipf:*:*:*:*:*
hitachicosminexus_application_server_enterprise06_50_c_1cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50_c_1:*:solaris:*:*:*:*:*
hitachicosminexus_application_server_enterprise06_50_e_1cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:06_50_e_1:*:hpux:*:*:*:*:*
Rows per page:
1-10 of 951

Related

nvd 1
prion 1
cvelist 1
nvd
nvd
CVE-2007-4563
2007-08-28 01:17:00
prion
prion
Code injection
2007-08-28 01:17:00
cvelist
cvelist
CVE-2007-4563
2007-08-28 01:00:00

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.5

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for CVE-2007-4563
nvd1prion1cvelist1