Known Vulnerability Updates
Security Updates
- ★ Security Vulnerability Information For Pentaho Software
- (Resolved) Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') - Versions before 10.1.0.0 and 9.3.0.7, including 8.3.x Impacted (CVE-2024-28984)
- (Resolved) Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') - Versions before 10.1.0.0 and 9.3.0.7, including 8.3.x Impacted (CVE-2024-28983)
- (Resolved) Hitachi Vantara Pentaho Business Analytics Server - Improper Restriction of XML External Entity Reference - versions before 10.1.0.0 and 9.3.0.7, including 8.3.x Impacted (CVE-2024-28982)
- (Resolved) Hitachi Vantara Pentaho Data Integration & Analytics - Server-generated Error Message Containing Sensitive Information - Versions before 10.1.0.0 and 9.3.0.6, including all versions before 10.0.x Impacted (CVE-2023-5617)
- (Resolved) Hitachi Vantara Pentaho Data Integration & Analytics - Improper Control of Resource Identifiers ('Resource Injection') - Versions before 9.5.0.1 and 9.3.0.5, including 8.3.x Impacted (CVE-2023-3517)