Known Vulnerability Updates
Security Updates
- ★ (Resolved) Pentaho Data Integration & Analytics - Improper Restriction of XML External Entity Reference - Versions before 10.2.0.7 and 11.0.0.0 Impacted (CVE- 2026-2253)
- ★ (Resolved) Pentaho Data Integration & Analytics - Incorrect Permission Assignment for Critical Resource - Versions before 10.2.0.6 and 11.0.0.0 Impacted (CVE- 2026-2254)
- ★ (Resolved) Pentaho Data Integration & Analytics - Insufficiently Protected Credentials - Versions before 10.2.0.6 and 11.0.0.0 Impacted (CVE- 2026-2255)
- ★ (Resolved) Pentaho Data Integration & Analytics - Dependency on Vulnerable Third-Party Component - Versions before 10.2.0.7 and 11.0.0.0 Impacted (CVE-2025-11159)
- ★ Security Vulnerability Information For Pentaho Software
- (Resolved) Pentaho Business Analytics Server - Generation of Error Message Containing Sensitive Information - Versions before 10.2.0.4 Impacted (CVE-2025-9122)