1. Home
  2. CVE Database
  3. CVE-2007-0514
MEDIUM · 6.8

CVE-2007-0514

Multiple cross-site scripting (XSS) vulnerabilities in multiple Hitachi Web Server, uCosminexus, and Cosminexus products before 20070124 allow remote attackers to inject arbitrary web script or HTML v...

Vulnerability Description

Multiple cross-site scripting (XSS) vulnerabilities in multiple Hitachi Web Server, uCosminexus, and Cosminexus products before 20070124 allow remote attackers to inject arbitrary web script or HTML via (1) HTTP Expect headers or (2) image maps.

CVSS Score

6.8

MEDIUM

AV:N/AC:M/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
HitachiCosminexus Application ServerAll versions
HitachiCosminexus Application Server Version 5All versions
HitachiCosminexus Developer Light Version 6All versions
HitachiCosminexus Developer Professional Version 6All versions
HitachiCosminexus Developer Standard Version 6All versions
HitachiCosminexus Developer Version 5All versions
HitachiCosminexus Server - Enterprise EditionAll versions
HitachiCosminexus Server - Standard EditionAll versions
HitachiCosminexus Server - Standard Edition Version 4All versions
HitachiCosminexus Server - Web EditionAll versions
HitachiCosminexus Server - Web Edition Version 4All versions
HitachiHitachi Web ServerAll versions
HitachiUcosminexus Application Server EnterpriseAll versions
HitachiUcosminexus Application Server Smart EditionAll versions
HitachiUcosminexus Application Server StandardAll versions
HitachiUcosminexus Developer LightAll versions
HitachiUcosminexus Developer StandardAll versions
HitachiUcosminexus Service ArchitectAll versions
HitachiUcosminexus Service PlatformAll versions

References

FAQ

What is CVE-2007-0514?

CVE-2007-0514 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Multiple cross-site scripting (XSS) vulnerabilities in multiple Hitachi Web Server, uCosminexus, and Cosminexus products before 20070124 allow remote attackers to inject arbitrary web script or HTML v...

How severe is CVE-2007-0514?

CVE-2007-0514 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-0514?

Check the references section above for vendor advisories and patch information. Affected products include: Hitachi Cosminexus Application Server, Hitachi Cosminexus Application Server Version 5, Hitachi Cosminexus Developer Light Version 6, Hitachi Cosminexus Developer Professional Version 6, Hitachi Cosminexus Developer Standard Version 6.