漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
Hitachi Vantara Pentaho Business Analytics Server - Incorrect Permission Assignment for Critical Resource
漏洞信息
Overview The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. (CWE-732) Description Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed with Karaf JMX beans enabled and accessible by default. Impact When the vulnerability is leveraged, a user with local execution privileges can access functionality exposed by Karaf beans contained in the product.
漏洞信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
漏洞
关键资源的不正确权限授予
漏洞
Hitachi Vantara Pentaho Business Analytics Server 安全漏洞
漏洞信息
Hitachi Vantara Pentaho Business Analytics Server是日本日立制作所(Hitachi)公司的一个现代数据混合、集成和业务分析平台。 Hitachi Vantara Pentaho Business Analytics Server 10.2.0.2之前版本、9.3.x和8.3.x版本存在安全漏洞,该漏洞源于默认启用的Karaf JMX beans可能导致权限不当访问。
漏洞信息
N/A
漏洞
N/A