Hitachi Cosminexus Server — known CVE vulnerabilities
Every CVE whose affected-product data names Hitachi Cosminexus Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2007-3794 — CVSS 10.0 (critical): Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer's Kit for Java before 20070312, and…
CVE-2009-4776 — CVSS 9.3 (critical): Buffer overflow in Hitachi Cosminexus V4 through V8, Processing Kit for XML, and Developer's Kit for Java, as used in products such as…
CVE-2004-1478 — CVSS 7.5 (high): JRun 4.0 does not properly generate and handle the JSESSIONID, which allows remote attackers to perform a session fixation attack and…
CVE-2004-0928 — CVSS 5.0 (medium): The Microsoft IIS Connector in JRun 4.0 and Macromedia ColdFusion MX 6.0, 6.1, and 6.1 J2EE allows remote attackers to bypass…
CVE-2007-5810 — CVSS 5.0 (medium): Hitachi Web Server 01-00 through 03-00-01, as used by certain Cosminexus products, does not properly validate SSL client certificates…
CVE-2007-5809 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote…