SQL Injection Vulnerability in Hitachi Collaboration Products
CVE-2007-1786

Currently unrated

Key Information:

Vendor: Hitachi
Status: Groupmax Collaboration Portal; Ucosminexus Collaboration Portal; Ucosminexus Content Manager; Cosminexus Collaboration Portal
Vendor: CVE Published:; 31 March 2007

Summary

An SQL injection vulnerability exists in Hitachi Collaboration products that can allow remote attackers to execute arbitrary SQL commands through unspecified vectors. This flaw affects several versions of the Hitachi Online Community Management and other related products, potentially compromising sensitive data and system integrity. Organizations using these products are advised to apply the latest patches to mitigate the risk.

References

http://www.hitachi-support.com/security_e/vuls_e/HS07-008...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/23208

vdb-entryx_refsource_BID

http://www.vupen.com/english/advisories/2007/1168

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Mar 31, 2007
Vulnerability Reserved
Mar 30, 2007