CVE-2007-4204 | Vulnerability Database | Aqua Security

Hitachi Groupmax Collaboration - Schedule, as used in Groupmax Collaboration Portal 07-32 through 07-32-/B, uCosminexus Collaboration Portal 06-32 through 06-32-/B, and Groupmax Collaboration Web Client - Mail/Schedule 07-32 through 07-32-/A, can assign schedule data to the wrong user under unspecified conditions, which might allow remote authenticated users to obtain sensitive information.

Affected Software

Name	Vendor	Start Version	End Version
Groupmax_collaboration_portal	Hitachi	07-32 (including)	07-32 (including)
Groupmax_collaboration_portal	Hitachi	07-32_b (including)	07-32_b (including)
Groupmax_collaboration_web_client	Hitachi	07-32 (including)	07-32 (including)
Groupmax_collaboration_web_client	Hitachi	07-32_a (including)	07-32_a (including)
Ucosminexus_collaboration_portal	Hitachi	06-32 (including)	06-32 (including)
Ucosminexus_collaboration_portal	Hitachi	06-32_b (including)	06-32_b (including)

References

http://osvdb.org/46987
http://www.hitachi-support.com/security_e/vuls_e/HS07-022_e/index-e.html
http://www.vupen.com/english/advisories/2007/2723
https://exchange.xforce.ibmcloud.com/vulnerabilities/35704

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-4204
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html