Known Vulnerability Updates
Security Updates
- ★ (Resolved) Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Input During Web Page Generation - Versions before 9.3.0.0, 9.2.0.4 and 8.3.0.27 Impacted (CVE-2022-3695)
- ★ (Resolved) Hitachi Vantara Pentaho Business Analytics Server - Incorrect Authorization - Versions before 9.3.0.0, 9.2.0.4 and 8.3.0.27 Impacted (CVE-2022-43770)
- ★ Security Vulnerability Information For Pentaho Software
- (Resolved) Pentaho BA Server - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') - Versions before 9.4.0.1 and 9.3.0.2, including 8.3.x Impacted (CVE-2022-43940) (CVE-2022-3960)
- (Resolved) Pentaho BA Server - Improper Restriction of XML External Entity Reference - Versions before 9.4.0.1 and 9.3.0.2, including 8.3.x Impacted (CVE-2022-43940) (CVE-2022-43941)
- (Resolved) Pentaho BA Server - Incorrect Authorization - Versions before 9.4.0.1 and 9.3.0.2, including 8.3.x Impacted (CVE-2022-43940)