Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The session failover function in Cosminexus Component Container in Cosminexus 6, 6.7, and 7 before 20070731, as used in multiple Hitachi products, can use session data for the wrong user under unspecified conditions, which might allow remote authenticated users to obtain sensitive information, corrupt another user's session data, and possibly gain privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cosminexus Component Container session failover函数敏感信息泄露漏洞
Vulnerability Description
Cosminexus Component Container 20070731版本之前的6, 6.7, 和7版本中的session failover函数, 当在多个Hitachi产品中运行时, 可以使用未明情况下错误用户的会话数据。这会允许远程验证用户可以获得敏感信息,纠正其它用户的会话数据,并可能获得特权。
CVSS Information
N/A
Vulnerability Type
N/A