Sign-up

ID

VAR-200708-0087


CVE

CVE-2007-4204


TITLE

Hitachi Groupmax Collaboration - Schedule Vulnerability in which important information is obtained

Trust: 0.8

sources: JVNDB: JVNDB-2007-004233

DESCRIPTION

Hitachi Groupmax Collaboration - Schedule, as used in Groupmax Collaboration Portal 07-32 through 07-32-/B, uCosminexus Collaboration Portal 06-32 through 06-32-/B, and Groupmax Collaboration Web Client - Mail/Schedule 07-32 through 07-32-/A, can assign schedule data to the wrong user under unspecified conditions, which might allow remote authenticated users to obtain sensitive information

Trust: 1.89

sources: NVD: CVE-2007-4204 // JVNDB: JVNDB-2007-004233 // BID: 85499

AFFECTED PRODUCTS

vendor:hitachimodel:ucosminexus collaboration portalscope:eqversion:06-32

Trust: 1.9

vendor:hitachimodel:groupmax collaboration web clientscope:eqversion:07-32

Trust: 1.9

vendor:hitachimodel:groupmax collaboration portalscope:eqversion:07-32

Trust: 1.9

vendor:hitachimodel:ucosminexus collaboration portalscope:eqversion:06-32_b

Trust: 1.6

vendor:hitachimodel:groupmax collaboration web clientscope:eqversion:07-32_a

Trust: 1.6

vendor:hitachimodel:groupmax collaboration portalscope:eqversion:07-32_b

Trust: 1.6

vendor:hitachimodel:groupmax collaboration portalscope:eqversion:07-32 to 07-32-/b

Trust: 0.8

vendor:hitachimodel:groupmax collaboration web clientscope:eqversion:mail/schedule 07-32 to 07-32-/a

Trust: 0.8

vendor:hitachimodel:ucosminexus collaboration portalscope:eqversion:06-32 to 06-32-/b

Trust: 0.8

vendor:hitachimodel:ucosminexus collaboration portal bscope:eqversion:06-32

Trust: 0.3

vendor:hitachimodel:groupmax collaboration web client ascope:eqversion:07-32

Trust: 0.3

vendor:hitachimodel:groupmax collaboration portal bscope:eqversion:07-32

Trust: 0.3

sources: BID: 85499 // JVNDB: JVNDB-2007-004233 // CNNVD: CNNVD-200708-084 // NVD: CVE-2007-4204

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2007-4204
value: LOW

Trust: 1.0

NVD: CVE-2007-4204
value: LOW

Trust: 0.8

CNNVD: CNNVD-200708-084
value: LOW

Trust: 0.6

nvd@nist.gov: CVE-2007-4204
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

sources: JVNDB: JVNDB-2007-004233 // CNNVD: CNNVD-200708-084 // NVD: CVE-2007-4204

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2007-4204

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200708-084

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200708-084

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2007-004233

PATCH
title:HS07-022url:http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS07-022/index.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2007-004233

EXTERNAL IDS
db:NVDid:CVE-2007-4204
Trust: 2.7
db:HITACHIid:HS07-022
Trust: 1.9
db:VUPENid:ADV-2007-2723
Trust: 1.6
db:OSVDBid:46987
Trust: 1.6
db:XFid:35704
Trust: 0.9
db:JVNDBid:JVNDB-2007-004233
Trust: 0.8
db:CNNVDid:CNNVD-200708-084
Trust: 0.6
db:BIDid:85499
Trust: 0.3
sources:
            
            
            BID: 85499 // 
            
            
            
            JVNDB: JVNDB-2007-004233 // 
            
            
            
            CNNVD: CNNVD-200708-084 // 
            
            
            
            NVD: CVE-2007-4204

REFERENCES
url:http://www.hitachi-support.com/security_e/vuls_e/hs07-022_e/index-e.html
Trust: 1.9
url:http://osvdb.org/46987
Trust: 1.6
url:http://www.vupen.com/english/advisories/2007/2723
Trust: 1.0
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/35704
Trust: 1.0
url:http://xforce.iss.net/xforce/xfdb/35704
Trust: 0.9
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-4204
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-4204
Trust: 0.8
url:http://www.frsirt.com/english/advisories/2007/2723
Trust: 0.6
sources:
            
            
            BID: 85499 // 
            
            
            
            JVNDB: JVNDB-2007-004233 // 
            
            
            
            CNNVD: CNNVD-200708-084 // 
            
            
            
            NVD: CVE-2007-4204

CREDITS
Unknown
Trust: 0.3
sources:
            
            
            BID: 85499

SOURCES
db:BIDid:85499
db:JVNDBid:JVNDB-2007-004233
db:CNNVDid:CNNVD-200708-084
db:NVDid:CVE-2007-4204

LAST UPDATE DATE
2024-11-23T23:13:18.254000+00:00

SOURCES UPDATE DATE
db:BIDid:85499date:2007-08-07T00:00:00
db:JVNDBid:JVNDB-2007-004233date:2012-09-25T00:00:00
db:CNNVDid:CNNVD-200708-084date:2007-08-15T00:00:00
db:NVDid:CVE-2007-4204date:2024-11-21T00:35:02.093

SOURCES RELEASE DATE
db:BIDid:85499date:2007-08-07T00:00:00
db:JVNDBid:JVNDB-2007-004233date:2012-09-25T00:00:00
db:CNNVDid:CNNVD-200708-084date:2007-08-07T00:00:00
db:NVDid:CVE-2007-4204date:2007-08-08T01:17:00