Vulnerability List - Page 2

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2022-43770	Hitachi Vantara Pentaho Business Analytics Server - Incorrect Authorization	Hitachi Vantara	Pentaho Business Analytics Server	Medium	5.4	2023-04-11 15:48:17	Deep Dive
CVE-2022-3695	Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Input During Web Page Generation	Hitachi Vantara	Pentaho Business Analytics Server	Medium	6.5	2023-04-11 15:45:03	Deep Dive
CVE-2022-4771	Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	Hitachi Vantara	Pentaho Business Analytics Server	Medium	5.4	2023-04-03 18:58:44	Deep Dive
CVE-2022-4770	Hitachi Vantara Pentaho Business Analytics Server - Generation of Error Message Containing Sensitive Information	Hitachi Vantara	Pentaho Business Analytics Server	Medium	4.3	2023-04-03 18:56:18	Deep Dive
CVE-2022-4769	Hitachi Vantara Pentaho Business Analytics Server - Generation of Error Message Containing Sensitive Information	Hitachi Vantara	Pentaho Business Analytics Server	Medium	4.3	2023-04-03 18:53:52	Deep Dive
CVE-2022-43772	Hitachi Vantara Pentaho Business Analytics Server - Insertion of Sensitive Information into Log File	Hitachi Vantara	Pentaho Business Analytics Server	Low	3.8	2023-04-03 18:50:59	Deep Dive
CVE-2022-3960	Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')	Hitachi Vantara	Pentaho Business Analytics Server	Medium	6.3	2023-04-03 18:48:01	Deep Dive
CVE-2022-43941	Hitachi Vantara Pentaho Business Analytics Server - Improper Restriction of XML External Entity Reference	Hitachi Vantara	Pentaho Business Analytics Server	High	7.1	2023-04-03 18:44:41	Deep Dive
CVE-2022-43771	Hitachi Vantara Pentaho Business Analytics Server - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')	Hitachi Vantara	Pentaho Business Analytics Server	Medium	6.5	2023-04-03 18:40:01	Deep Dive
CVE-2022-43940	Hitachi Vantara Pentaho Business Analytics Server - Incorrect Authorization	Hitachi Vantara	Pentaho Business Analytics Server	High	8.8	2023-04-03 18:25:33	Deep Dive
CVE-2022-43939	Hitachi Vantara Pentaho Business Analytics Server - Use of Non-Canonical URL Paths for Authorization Decisions	Hitachi Vantara	Pentaho Business Analytics Server	High	8.6	2023-04-03 18:10:32	Deep Dive
CVE-2022-43938	Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')	Hitachi Vantara	Pentaho Business Analytics Server	High	8.8	2023-04-03 18:06:54	Deep Dive
CVE-2022-43773	Hitachi Vantara Pentaho Business Analytics Server - Incorrect Permission Assignment for Critical Resource	Hitachi Vantara	Pentaho Business Analytics Server	High	8.8	2023-04-03 17:59:17	Deep Dive
CVE-2022-43769	Hitachi Vantara Pentaho Business Analytics Server - Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)	Hitachi Vantara	Pentaho Business Analytics Server	High	8.8	2023-04-03 17:47:46	Deep Dive
CVE-2021-45448	Pentaho Business Analytics Server - Pentaho Analyzer plugin exposes a service endpoint for templates which allows a user supplied path to access resources that are out of bounds.	Hitachi Vantara	Pentaho Business Analytics Server	High	7.1	2022-11-02 15:12:25	Deep Dive
CVE-2021-45447	Pentaho Business Analytics Server - With the Data Lineage feature enabled, the system transmits database passwords in clear text	Hitachi Vantara	Pentaho Business Analytics Server	High	7.7	2022-11-02 14:56:02	Deep Dive
CVE-2021-45446	Pentaho Business Analytics Server - Exposure of Information Through Directory Listing	Hitachi Vantara	Pentaho Business Analytics Server	Medium	5.0	2022-11-02 14:26:02	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List - Page 2