Hitachivantara Pentaho Business Analytics — known CVE vulnerabilities
Every CVE whose affected-product data names Hitachivantara Pentaho Business Analytics, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2016-10701 — CVSS 8.8 (high): In Hitachi Vantara Pentaho BA Platform through 8.0, a CSRF issue exists in the Business Analytics application.
CVE-2022-3695 — CVSS 6.5 (medium): Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.3.0.0, 9.2.0.4 and 8.3.0.27 allow a malicious URL to inject content…
CVE-2022-43770 — CVSS 5.4 (medium): Hitachi Vantara Pentaho Business Analytics Server versions before 9.3.0.0, 9.2.0.4 and 8.3.0.27 does not correctly perform an authorization…
CVE-2023-2358 — CVSS 4.3 (medium): Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.5.0.0 and 9.3.0.4, including 8.3.x.x, saves passwords of the Hadoop…