Update: November 19, 2021
Multiple vulnerabilities have been found in Cosminexus.
hitachi-sec-2019-122
Cosminexus Developer's Kit for Java(TM) and Hitachi Developer's Kit for Java contain the following vulnerabilities:
CVE-2019-2894, CVE-2019-2933, CVE-2019-2945, CVE-2019-2949, CVE-2019-2958, CVE-2019-2962, CVE-2019-2964, CVE-2019-2973, CVE-2019-2975, CVE-2019-2977, CVE-2019-2978, CVE-2019-2981, CVE-2019-2983, CVE-2019-2987, CVE-2019-2988, CVE-2019-2989, CVE-2019-2992, CVE-2019-2999
Cosminexus XML Processor contain the following vulnerabilities:
CVE-2019-2973, CVE-2019-2981
Affected products and versions are listed below. Please upgrade your version to the appropriate version.
These vulnerabilities exist in Cosminexus Developer's Kit for Java(TM), Hitachi Developer's Kit for Java and Cosminexus XML Processor which is a component product of other Hitachi products.
For details about the fixed version about Cosminexus products, contact your Hitachi support service representative.
The information is organized under the following headings:
Version:
- Cosminexus V8, V9
Version(s):
- Hitachi Application Server
Version(s):
The information is organized under the following headings:
Version:
Scheduled version:
Version(s):
Version(s):
Version(s):
For details on the fixed products, contact your Hitachi support service representative.