Filtered by vendor Hitachivantara Subscriptions
Filtered by product Pentaho Business Analytics Subscriptions
Total 4 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-2358 1 Hitachivantara 1 Pentaho Business Analytics 2024-11-21 4.3 Medium
Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.5.0.0 and 9.3.0.4, including 8.3.x.x, saves passwords of the Hadoop Copy Files step in plaintext. 
CVE-2022-43770 1 Hitachivantara 1 Pentaho Business Analytics 2024-11-21 5.4 Medium
Hitachi Vantara Pentaho Business Analytics Server versions before 9.3.0.0, 9.2.0.4 and 8.3.0.27 does not correctly perform an authorization check in the dashboard editor plugin API.   
CVE-2022-3695 1 Hitachivantara 1 Pentaho Business Analytics 2024-11-21 6.5 Medium
Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.3.0.0, 9.2.0.4 and 8.3.0.27 allow a malicious URL to inject content into a dashboard when the CDE plugin is present.   
CVE-2016-10701 1 Hitachivantara 1 Pentaho Business Analytics 2024-11-21 N/A
In Hitachi Vantara Pentaho BA Platform through 8.0, a CSRF issue exists in the Business Analytics application.